Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. The joint alert also states that attackers scanning also enumerated devices for the CVE-2020-12812 and CVE-2019-5591 flaws. Use multifactor authentication where possible.

Passwords 66

Passwords Government Firmware Accountability 66

Malwarebytes

SEPTEMBER 3, 2021

As we pointed out in our State of Malware report, published earlier this year, Malwarebytes recorded an eye-watering 607% increase in malware detections in the agriculture sector in 2020. Malwarebytes recorded a 607% increase in agriculture sector attacks in 2020. Use multi-factor authentication with strong pass phrases where possible.

Ransomware 139

Ransomware Manufacturing Passwords Internet 139

Security Affairs

MAY 13, 2021

The Darkside ransomware gang first emerged in the threat landscape in August 2020, in recent months the group was very active and targeted organizations worldwide. Require multi-factor authentication for remote access to OT and IT networks. Implement regular data backup procedures . 3 ],[ 4 ]” reads the joint alert.

Ransomware 110

Ransomware Healthcare Phishing Risk 110

Security Affairs

APRIL 14, 2022

sys “) by triggering the CVE-2020-15368 flaw to execute malicious code in the Windows kernel. Enforce multifactor authentication for all remote access to ICS networks and devices whenever possible. Threat actors can also leverage a tool to install and exploit a known-vulnerable ASRock-signed motherboard driver (“ AsrDrv103.

Passwords 115

Passwords Architecture Backups Cyber Attacks 115

SecureWorld News

DECEMBER 18, 2020

The FBI, CISA, and the Multi-State Information Sharing and Analysis Center (MS-ISAC) recently revealed that the number of ransomware incidents against K-12 districts increased dramatically at the beginning of fall 2020 classes. Use multi-factor authentication where possible. K-12 districts now top ransomware target.

Ransomware 64

Ransomware Education Backups Malware 64

eSecurity Planet

FEBRUARY 15, 2022

The agencies offered some sound cybersecurity advice for BlackByte that applies pretty generally: Conduct regular backups and store them as air-gapped, password-protected copies offline. Update and patch operating systems, software, and firmware as soon as updates and patches are released. 7 SP1, 8, 8.1)

Ransomware 117

Ransomware Encryption Backups Accountability 117

Malwarebytes

MAY 6, 2022

REvil (aka Sodinokibi) first appeared in May 2020 and has been responsible for numerous high-profile ransomware attacks, including arguably the biggest ransomware attack of all time—a supply-chain attack on Kaseya VSA in July 2021 that is thought to have affected over 1,000 businesses. An old enemy returns. Ransomware mitigations.

Ransomware 80

Ransomware Encryption Accountability Technology 80

Malwarebytes

APRIL 5, 2023

By January 2023, education had claimed over 80 percent of all global malware incidents —a staggering lead that has held since 2020. In fact, 57 percent of all ransomware incidents disclosed to the FBI involved K–12 districts at the start of the 2020/2021 school year, compared to just 28 percent the year prior.

Education 61

Education Ransomware Cybersecurity Risk 61

Malwarebytes

MAY 28, 2021

Two years later, the group moved to using Conti, in May 2020. Below is a list of recommended mitigations from the FBI, which it issued along with an alert on Conti ransomware late last week: Regularly back up data, air gap, and password protect backup copies offline. Use multi-factor authentication where possible.

Healthcare 105

Healthcare Ransomware Encryption Passwords 105

Security Affairs

OCTOBER 13, 2020

Here are five significant cybersecurity vulnerabilities with IoT in 2020. If such processes lack proper authentication steps, they could work as gateways for bigger problems. Before the device applies the update, it sends a backup to the servers. The Threat is Definitely Real. Shadow IoT Devices.

IoT 135

IoT Cybersecurity Manufacturing Internet 135

McAfee

AUGUST 24, 2021

CVE-2021-33885 – Insufficient Verification of Data Authenticity (CVSS 9.7). CVE-2021-33882 – Missing Authentication for Critical Function (CVSS 8.2). It is estimated that there are over 200 million IV infusions administered globally each year, and 2020 sales of IV pumps in the US were at $13.5 Figure 1: B.

Computers and Electronics 145

Computers and Electronics Authentication Software Risk 145

Malwarebytes

JULY 13, 2022

Automatic data backups to offsite and/or segmented servers will be key in keeping businesses operational in case of breach. Ransoms were 36 percent higher in 2021 than in 2020 at an average of $6.1 In 2020, gangs such as Conti, REvil, and Maze published stolen data even if the ransom was paid. Ransomware mitigations.

Ransomware 107

Ransomware Manufacturing Government Computers and Electronics 107

eSecurity Planet

MAY 28, 2021

The truth is that solutions like single sign-on (SSO) and multi-factor authentication (MFA) can spell disaster if initial access is all a malicious actor needs to traverse the network’s resources. Prevent Rely solely on offline backups Disallow unnecessary file sharing. Old way New way. Current Target: VBOS.

Software 99

Software Firmware DNS VPN 99

Malwarebytes

JUNE 3, 2022

Conti ransomware and the group that distributes it has been a dangerous, noisy presence in the ransomware ecosystem since 2020. Implement regular backups of all data to be stored as air-gapped, password-protected copies offline. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released.

Ransomware 101

Ransomware Accountability Technology Firmware 101

SecureWorld News

OCTOBER 29, 2020

October 29, 2020. Patch operating systems, software, and firmware as soon as manufacturers release updates. Use multi-factor authentication where possible. We released an advisory with the @FBI & @HHSgov about this #ransomware threat that uses #Trickbot and #Ryuk malware. Ryuk attacks on hospitals: 'unprecedented'.

Ransomware 63

Ransomware Healthcare Backups Cybercrime 63

eSecurity Planet

FEBRUARY 16, 2021

With over 600,000 devices, this botnet exposed just how vulnerable IoT devices could be and led to the IoT Cybersecurity Improvement Act of 2020. This exposed data includes everything from emails and documents typed to passwords entered for authentication purposes. A strain of keylogger malware dubbed LokiBot notably increased in 2020.

Malware 105

Malware Adware Spyware Antivirus 105

eSecurity Planet

MARCH 23, 2022

Chinese APT attackers developed a Unified Extensible Firmware Interface (UEFI) malware that hijacks the booting sequence and is saved in the SPI flash memory of the motherboard beyond where most tools might remove it. Implement multi-factor authentication (MFA). See the Best Backup Solutions for Ransomware Protection.

Firewall 98

Firewall Malware Phishing Software 98

ForAllSecure

OCTOBER 29, 2020

Vamosi: Bowen’s public inquiry revealed findings of multiple buffer overflows, software updates without authentication, and inadequate randomization of the ballots so that valid secrecy can be compromised -- among other vulnerabilities. In 2020, we’re stuck in the middle of these two extremes right now.

Hacking 52

Hacking Mobile Software Technology 52

ForAllSecure

OCTOBER 29, 2020

Vamosi: Bowen’s public inquiry revealed findings of multiple buffer overflows, software updates without authentication, and inadequate randomization of the ballots so that valid secrecy can be compromised -- among other vulnerabilities. In 2020, we’re stuck in the middle of these two extremes right now.

Hacking 52

Hacking Mobile Software Technology 52

ForAllSecure

OCTOBER 20, 2020

Vamosi: Bowen’s public inquiry revealed findings of multiple buffer overflows, software updates without authentication, and inadequate randomization of the ballots so that valid secrecy can be compromised -- among other vulnerabilities. In 2020, we’re stuck in the middle of these two extremes right now.

Hacking 40

Hacking Mobile Software Technology 40

eSecurity Planet

MAY 2, 2024

Multi-factor authentication : Protects stolen credentials against use by requiring more than a simple username and password combination for access to resources. Passwordless authentication : Eliminates passwords in favor of other types of authentication such as passkeys, SSO, biometrics, or email access. 50% cloud targets.

Cybersecurity 94

Cybersecurity DDOS Penetration Testing Passwords 94

SecureList

JULY 28, 2022

In late 2021, we encountered a malicious DXE driver incorporated into several UEFI firmware images that were flagged by our firmware scanner (integrated into Kaspersky products at the start of 2019). We first reported DeathStalker’s VileRAT campaign in August 2020. Final thoughts.

Malware 130

Malware Firmware Phishing Cryptocurrency 130

eSecurity Planet

MAY 19, 2022

Already a leading SD-WAN pick, the HPE subsidiary boosted its market position with acquisitions of security vendor Cape Networks in 2018 and WAN specialist Silver Peak Systems in 2020. The CloudGen WAN is a global SASE service built on Azure; meanwhile, the CloudGen Firewall offers an advanced firewall for today’s hybrid workloads.

Firewall 111

Firewall Architecture Encryption Network Security 111