Security Affairs

MARCH 24, 2021

Security experts reported that a second ransomware gang, named Black Kingdom , is targeting Microsoft Exchange servers. The first ransomware gang exploiting the above issues in attacks in the wild was a group tracked as DearCry. BlackKingdom ransomware on my personal servers. It does indeed encrypt files.

Ransomware 140

Ransomware Encryption VPN Malware 140

Security Affairs

JUNE 23, 2021

A critical vulnerability, tracked as CVE-2021-20019 , in SonicWall VPN appliances was only partially patched last year and could allow a remote attacker to steal sensitive data. The flaw resides in the HTTP/HTTPS service used for product management as well as SSL VPN remote access. “An reads the analysis published by Tripwire.

VPN 87

VPN Firewall Firmware Authentication 87

Security Affairs

NOVEMBER 23, 2020

FBI is warning private industry partners of a surge in Ragnar Locker ransomware activity following a confirmed attack from April 2020. The MU-000140-MW flash alert includes indicators of compromise to detect associated with this ransomware gang. Only use secure networks and avoid using public Wi-Fi networks.

Ransomware 145

Ransomware Encryption VPN Backups 145

Security Affairs

DECEMBER 6, 2020

LockBit ransomware operators have compromised the systems at the helicopter maker Kopter and published them on their darkweb leak site. The helicopter maker Kopter was hit by LockBit ransomware, the attackers compromised its internal network and encrypted the company’s files. SecurityAffairs – hacking, ransomware).

Ransomware 100

Ransomware VPN Encryption Authentication 100

Security Affairs

APRIL 24, 2020

The popular SeaChange video platform is the latest victim of the Sodinokibi Ransomware gang, which is threatening to leak the stolen data. SeaChange International, the multinational supplier of video delivery software solutions, was the victim of the Sodinokibi Ransomware gang. SecurityAffairs – Sodinokibi Ransomware, hacking).

Software 103

Software Ransomware VPN Advertising 103

Security Affairs

JULY 20, 2020

Another telco company was hit by a ransomware, roughly 18,000 computers belonging to Telecom Argentina were infected over the weekend. Telecom Argentina , one of the largest internet service providers in Argentina, was hit by a ransomware attack. SecurityAffairs – hacking, REVil ransomware). million ransom. Pierluigi Paganini.

Ransomware 124

Ransomware VPN Advertising Internet 124

Security Affairs

MAY 1, 2021

Taiwanese vendor QNAP is warning its customers of AgeLocker ransomware attacks on their NAS devices. Crooks behind the AgeLocker ransomware operation are targeting QNAP NAS devices, the Taiwanese vendor warns. ” reads the security advisory published by the vendor. . Follow me on Twitter: @securityaffairs and Facebook.

Ransomware 115

Ransomware Cryptocurrency Malware Internet 115

Security Affairs

JUNE 21, 2021

The Taiwanese memory and storage chip maker ADATA was hit by the Ragnar Locker ransomware gang that also published more than 700GB of stolen data. The Ragnar Locker ransomware gang has published on its leak sites more than 700GB of data stolen from Taiwanese memory and storage chip maker ADATA. Consider installing and using a VPN.

Ransomware 139

Ransomware Passwords VPN Authentication 139

Security Affairs

JANUARY 10, 2020

The US DHS CISA agency is warning organizations that threat actors continue to exploit the CVE-2019-11510 Pulse Secure VPN vulnerability. The CVE-2019-11510 flaw in Pulse Connect Secure is a critical arbitrary file read vulnerability. SecurityAffairs – Pulse Secure VPN , hacking). Pierluigi Paganini.

VPN 72

VPN InfoSec Advertising Cybersecurity 72

Security Affairs

MARCH 26, 2021

Accenture security researchers published an analysis of the latest Hades campaign, which is ongoing since at least December 2020. . Experts identified Tor hidden services and clearnet URLs via various open-source reporting that could be associated with the activity of the Hades ransomware. ” concludes the report.

Ransomware 141

Ransomware Encryption Malware VPN 141

Security Affairs

SEPTEMBER 7, 2020

Chilean bank BancoEstado, one of the country’s biggest banks, was forced to shut down all branches following a ransomware attack. Chilean bank BancoEstado, one of the country’s biggest banks, was hit with a ransomware attack that forced its branches to remain closed since September 7. ” reported ZDNet.

Banking 112

Banking Ransomware Advertising VPN 112

Security Affairs

NOVEMBER 4, 2020

The source code for the KPot information stealer was put up for auction and the REvil ransomware operators want to acquire it. The authors of KPot information stealer have put its source code up for auction , and the REvil ransomware operators will likely be the only group to bid. 3 (@pancak3lullz) October 15, 2020.

Ransomware 137

Ransomware Malware Advertising Cybercrime 137

Security Affairs

SEPTEMBER 10, 2020

US-based supplier of video delivery software solutions, SeaChange International, revealed that a ransomware attack disrupted its operations in Q1 2020. SeaChange International, a US-based supplier of video delivery software solutions, revealed that a ransomware attack has disrupted its operations during the first quarter of 2020.

Ransomware 66

Ransomware VPN Banking Data breaches 66

Security Affairs

SEPTEMBER 3, 2021

FBI warns ransomware gangs are actively targeting organizations in the food and agriculture sector. Small farms, large producers, processors and manufacturers, and markets and restaurants are particularly exposed to ransomware attacks. Only use secure networks and avoid using public Wi-Fi networks.

Ransomware 99

Ransomware Passwords Backups Firmware 99

Malwarebytes

SEPTEMBER 3, 2021

The FBI has issued a Private Industry Notification (PIN) about cybercriminal actors targeting the food and agriculture sector with ransomware attacks. Ransomware attacks targeting the food and agriculture sector disrupt operations, cause financial loss, and negatively impact the food supply chain. Consider installing and using a VPN.

Ransomware 138

Ransomware Manufacturing Passwords Internet 138

Security Affairs

AUGUST 6, 2020

Netwalker ransomware operators breached the networks of Forsee Power , a well-known player in the electromobility market. A new company has been added to the list of the victims of the Netwalker ransomware operators, it is Forsee Power , which provides advanced lithium-ion battery systems for any mobility application.

Ransomware 107

Ransomware VPN Advertising Marketing 107

Security Affairs

MARCH 8, 2022

The US FBI warns that the Ragnar Locker ransomware gang has breached the networks of at least 52 organizations from multiple US critical infrastructure sectors. “RagnarLocker ransomware actors work as part of a ransomware family, frequently changing obfuscation techniques to avoid detection and prevention.”

Ransomware 86

Ransomware Financial Services Passwords VPN 86

Security Affairs

SEPTEMBER 10, 2020

Equinix, one of the world’s largest providers of colocation data centers and Internet connection announced it was hit by Netwalker Ransomware. Equinix, one of the leaders in the global colocation data center market share, with 205 data centers in 25 countries on five continents, was hit by Netwalker ransomware operators.

Ransomware 108

Ransomware VPN Data breaches Advertising 108

Security Affairs

MAY 13, 2021

FBI and DHS’s CISA have published a joint alert on DarkSide ransomware activity after the disruptive attack on Colonial Pipeline. FBI and DHS’s CISA have published a joint alert to warn of ransomware attacks conducted by the DarkSide group. The group provides Ransomware-as-a-Service (RaaS) to a network of affiliates.

Ransomware 112

Ransomware Healthcare Phishing Risk 112

Security Affairs

APRIL 8, 2020

On March 21, the Maze ransomware operators published some of the stolen files on their “leak site,” after the refusal of the research firm of paying the ransom. Stolen data included the personal information for volunteers who surnames begin with D, G, I, or J. A criminal group called Maze has claimed responsibility.”

Ransomware 103

Ransomware Data breaches Healthcare Advertising 103

SC Magazine

JUNE 24, 2021

Babuk, the ransomware group behind the Washington, D.C. Today’s columnist, Jane Adams of Secureworks, offers insights on what these changing strategies mean to security teams. The fallout from the DarkSide ransomware attack on Colonial Pipeline on May 7 caused apparent disruption in parts of the ransomware ecosystem.

Ransomware 73

Ransomware Encryption VPN Software 73

Malwarebytes

MAY 28, 2021

On the 14th of May, the Health Service Executive (HSE) , Ireland’s publicly funded healthcare system, fell victim to a Conti ransomware attack, forcing the organization to shut down more than 80,000 affected endpoints and plunging them back to the age of pen and paper. Threat profile: Conti ransomware.

Healthcare 103

Healthcare Ransomware Encryption Passwords 103

Security Affairs

OCTOBER 18, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

VPN 79

VPN Surveillance Advertising Ransomware 79

Security Affairs

OCTOBER 15, 2020

1/2 — NOOK (@nookBN) October 14, 2020. (2/2) — NOOK (@nookBN) October 14, 2020. ” BleepingComputer confirmed that the company was hit by a cyber attack on October 10th, 2020, and cited as a source an email sent to customers late Wednesday night that is has seen. Thank you for your patience.

Cyber Attacks 113

Cyber Attacks VPN Backups Ransomware 113

Security Affairs

DECEMBER 13, 2020

COVID-19 themed attacks October 1 – December 5, 2020 Drug dealers are selling Pfizer COVID vaccines on the darkweb LockBit Ransomware operators hit Swiss helicopter maker Kopter Police arrest two people over stealing sensitive data from defense giant A ransomware attack hit the Greater Baltimore Medical Center Cisco fixes exploitable RCEs in Cisco (..)

Computers and Electronics 90

Computers and Electronics VPN Hacking Ransomware 90

Security Affairs

NOVEMBER 29, 2020

A cyberattack crippled the IT infrastructure of the City of Saint John Hundreds of female sports stars and celebrities have their naked photos and videos leaked online Romanians arrested for running underground malware services Threat actor shared a list of 49,577 IPs vulnerable Fortinet VPNs Computer Security and Data Privacy, the perfect alliance (..)

Data breaches 87

Data breaches Social Engineering Ransomware Malware 87

Security Affairs

MAY 8, 2020

Ruhr University Bochum (RUB) shuts down a large portion of its central IT infrastructure between May 6 and May 7, 2020. on Thursday, May 7, 2020. . on Thursday, May 7, 2020. e-mail, VPN tunnel, “Serviceportal”). ^sk sk — Ruhr-Universität Bochum (@ruhrunibochum) May 7, 2020.

Cyber Attacks 100

Cyber Attacks VPN Advertising Hacking 100

Security Affairs

MARCH 21, 2020

The financial technology firm Finastra announced it has suffered a ransomware attack that took down its some of its systems. Finastra , the UK leading financial technology provider, announced that some of its servers were shut down in response to a ransomware attack that the company detected. billion in revenues. Travelex deja vu?

Cyber Attacks 115

Cyber Attacks Data breaches Advertising Ransomware 115

Security Affairs

SEPTEMBER 15, 2020

. “CISA has observed these—and other threat actors with varying degrees of skill—routinely using open-source information to plan and execute cyber operations.” 7 ] CVE-2019-19781 : Citrix Virtual Private Network (VPN) Appliances – CISA has observed the threat actors attempting to discover vulnerable Citrix VPN Appliances.

Government 74

Government VPN Firmware Energy and Utilities 74

Security Affairs

MAY 17, 2020

Even if the company did not reveal any details on the attack, experts speculate the involvement of a ransomware. Experts from security firm Bad Packets reported that Elexon had been running an outdated version of Pulse Secure VPN server, if confirmed threat actors could have exploited it to access the internal network.

Cyber Attacks 76

Cyber Attacks VPN Advertising Cyber threats 76

Security Affairs

SEPTEMBER 27, 2020

Every week the best security articles from Security Affairs free for you in your email box. fitness chains Town Sports leaked online Group-IB detects a series of ransomware attacks by OldGremlin HOW DO PROVIDERS IMPLEMENT INTERNET BLOCKING IN BELARUS? A new round of the weekly SecurityAffairs newsletter arrived!

IoT 102

IoT Banking Advertising Ransomware 102

Security Affairs

SEPTEMBER 7, 2021

The Ragnar Locker ransomware operators threaten to leak stolen data if the victims attempt to contact law enforcement agencies. The Ragnar Locker ransomware gang is adopting a new technique to force victims to pay the ransom, the operators threaten to leak stolen data if the victims contact law enforcement agencies. Pierluigi Paganini.

Ransomware 90

Ransomware VPN Authentication Passwords 90

SecureWorld News

SEPTEMBER 21, 2020

I heard a speaker at the SecureWorld Twin Cities conference give this chilling warning: "We're entering a time where cybersecurity is no longer about data security. it is about life security. ". A recent ransomware attack against a German hospital appears to have made this prediction a reality. Here's a twist to consider.

Ransomware 77

Ransomware Marketing VPN Healthcare 77

Security Affairs

FEBRUARY 15, 2021

The French security agency ANSSI is warming of a series of attacks targeting Centreon monitoring software used by multiple French organizations and attributes them to the Russia-linked Sandworm APT group. The first attack spotted by ANSSI experts dates back to the end of 2017 and the campaign continued until 2020.

VPN 126

VPN Software Internet Internet 126

Security Affairs

MAY 27, 2022

Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means. In late 2020, credentials for US-based universities were found for sale on the dark web. In 2017, crooks launched a phishing campaign against universities to compromise.edu accounts.

Cybercrime 132

Cybercrime Education Accountability Phishing 132

Security Affairs

JANUARY 3, 2021

If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Data breaches 96

Data breaches Mobile VPN Firewall 96

Security Affairs

JANUARY 19, 2020

Maze Ransomware operators leak 14GB of files stolen from Southwire. January 2020 Adobe Patch Tuesday updates fix issues in Illustrator, Experience Manager. Microsoft addresses CVE-2020-0601 flaw, the first issue ever reported by NSA. 5ss5c Ransomware emerges after Satan went down in the hell. million from his activity.

Data breaches 55

Data breaches Advertising VPN Cybercrime 55