2020, Ransomware and Security Intelligence

Microsoft warns about ongoing PonyFinal ransomware attacks

Security Affairs

MAY 27, 2020

Microsoft is warning organizations to deploy protections against a new strain of PonyFinal ransomware that has been in the wild over the past two months. PonyFinal is Java-based ransomware that is manually distributed by threat actors. PonyFinal is Java-based ransomware that is manually distributed by threat actors.

Ransomware

Ransomware Security Intelligence Encryption Advertising

STRRAT RAT spreads masquerading as ransomware

Security Affairs

MAY 20, 2021

Microsoft warns of a malware campaign that is spreading a RAT dubbed named STRRAT masquerading as ransomware. Microsoft Security Intelligence researchers uncovered a malware campaign that is spreading a remote access trojan (RAT) tracked as STRRAT. STRRAT RAT was first spotted in June 2020 by G DATA who documented its features.

Ransomware

Ransomware Malware Encryption Security Intelligence

Ransomware, BEC and Phishing Still Top Concerns, per 2021 Threat Report

Webroot

APRIL 21, 2021

Although cybercriminal activity throughout 2020 was as innovative as ever, some of the most noteworthy threat activity we saw came from the old familiar players, namely ransomware, business email compromise (BEC) and phishing. Ransomware. One of the newer trends we saw in ransomware was that of data extortion.

Threat Reports

Threat Reports Phishing Ransomware Backups

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Security Affairs

OCTOBER 10, 2020

The TA505 group was involved in campaigns aimed at distributing the Dridex banking Trojan, along with Locky , BitPaymer , Philadelphia , GlobeImposter , and Jaff ransomware families. Security experts from cyber-security firm Prevailion reported that TA505 has compromised more than 1,000 organizations. states Microsoft.

Cybercrime

Cybercrime Security Intelligence Authentication Banking

Customized threat intelligence can track down ransomware gangs

SC Magazine

JULY 2, 2021

Today’s columnist, Troy Wachter of Cyberint, says defeating ransomware groups like the one that hit Colonial Pipeline will take teamwork across departments and threat intelligence tools that show how and where specific threats have originated and how they are evolving. OrbitalJoe CreativeCommons CC BY-NC-ND 2.0.

Ransomware

Ransomware Engineering Encryption Insurance

What a difference a year makes, or does it?

Webroot

OCTOBER 1, 2021

2020 was a year of immense change. There was the infrastructure ransomware attack on the Colonial Pipeline in May 2021, which caused the company to cease operations for days. Also the attack on JBS USA , which fell victim to ransomware and threatened U.S. We began even more to rely on the internet as a conduit to the world.

Ransomware

Ransomware Backups Threat Reports Small Business

Microsoft warns TA505 changed tactic in an ongoing malware campaign

Security Affairs

FEBRUARY 2, 2020

pic.twitter.com/mcRyEBUmQH — Microsoft Security Intelligence (@MsftSecIntel) January 30, 2020. The TA505 group was involved in campaigns aimed at distributing the Dridex banking Trojan, along with Locky , BitPaymer , Philadelphia , GlobeImposter , and Jaff ransomware families. based electrical company, a U.S.

Malware

Malware Security Intelligence Banking Phishing

CISA alert warns of Emotet attacks on US govt entities

Security Affairs

OCTOBER 6, 2020

The infamous banking trojan is also used to deliver other malicious code, such as Trickbot and QBot trojan or ransomware such as Conti (TrickBot) or ProLock (QBot). The alert published by CISA was based on data provided by the Multi-State Information Sharing & Analysis Center (MS-ISAC) and the CISA itself since July 2020.

Government

Government Banking Advertising Malware

Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

Security Affairs

SEPTEMBER 24, 2020

pic.twitter.com/POppQ51uMX — Microsoft Security Intelligence (@MsftSecIntel) September 22, 2020. ” #Emotet AAR for 2020/09/22: Well yesterday was kinda nuts with nearly 400 malspams received with the majority being attachment on 60/40 basis. Heaviest I can remember in some time. Shared templates in paste.

Malware

Malware Passwords Advertising Cybercrime

Iran-linked APT groups continue to evolve

Security Affairs

NOVEMBER 17, 2021

Learn more from this blog summarizing these trends, as presented at #CyberWarCon : [link] — Microsoft Security Intelligence (@MsftSecIntel) November 16, 2021. The analysis focuses on six Iranian hacking groups that are increasingly utilizing ransomware to either fundraise or disrupt the computer networks of the targets.

VPN

VPN Social Engineering Accountability Media

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Webroot

JANUARY 7, 2022

2020 may have been the year of establishing remote connectivity and addressing the cybersecurity skills gap, but 2021 presented security experts, government officials and businesses with a series of unpresented challenges. Ransomware. Earlier in 2021, we detailed the hidden costs of ransomware in our eBook.

Cybercrime

Cybercrime Phishing Ransomware Cryptocurrency

More Than 90 Percent of Malware in Q2 Came Via Encrypted Traffic: WatchGuard

eSecurity Planet

OCTOBER 4, 2021

percent of all malware detected on networks of WatchGuard Technologies customers in the second quarter came over encrypted connections, raising the security risk for the 80 percent of such organizations that lack processes for decrypting and scanning HTTPS traffic for threats. PowerShell, Ransomware Threats Grow. A surprising 91.5

Encryption

Encryption Malware Ransomware Firewall

Emotet operators are running Halloween-themed campaigns

Security Affairs

OCTOBER 31, 2020

The infamous banking trojan is also used to deliver other malicious code, such as Trickbot and QBot trojan or ransomware such as Conti (TrickBot) or ProLock (QBot). Researchers from Microsoft Security Intelligence are also warning of the ongoing Halloween-themed Emotet campaign. since August. Enable Edition template mostly used.

Banking

Banking Malware Security Intelligence Advertising

Trickbot is the most prolific malware operation using COVID-19 themed lures

Security Affairs

APRIL 18, 2020

pic.twitter.com/V2JcZg2kjt — Microsoft Security Intelligence (@MsftSecIntel) April 17, 2020. Then the attackers attempt to monetize their efforts by deploying other payloads, like the Ryuk Ransomware. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Malware

Malware Advertising Security Intelligence Phishing

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

Luckily for cybersecurity startups, there’s no shortage of interest in tomorrow’s next big security vendors. billion in 2021, and growing concerns over data security , software supply chains , and ransomware suggest the market will remain strong through economic ups and downs. a16z Investments. Insight Investments.

Cybersecurity

Cybersecurity Technology Marketing Healthcare

Demand, CyberInsurance, and Automation/AI Are the Future of InfoSec

Daniel Miessler

NOVEMBER 6, 2020

This gap between need and skilled people is even more acute due to the rise of the ransomware threat , and the world is going to have to respond with more people who can at least do the basics, even if that’s through short certification programs. Here’s my talk on this topic at DEFCON in 2020. ESG and ISSA.

InfoSec

InfoSec Insurance Artificial Intelligence Cybersecurity

Microsoft partnered with other security firms to takedown TrickBot botnet

Security Affairs

OCTOBER 12, 2020

link] — Microsoft Security Intelligence (@MsftSecIntel) October 12, 2020. The Trickbot infrastructure was used by crooks to compromise systems and carry out human-operated campaigns, notably its use for the deployment of the Ryuk ransomware. ” reads the post published by Microsoft.

Banking

Banking Malware Advertising Financial Services

GUEST ESSAY: Here’s why managed security services — MSS and MSSP — are catching on

The Last Watchdog

MAY 20, 2022

billion in 2020.”. MSSPs in 2022. What happens on the market? Well, as MSSP Alert notes, “In the Americas, the MSSP and PSSP market will reach $18.81 billion by 2024, up from $12.01 Some of the main drivers of this accelerated growth include: •Advanced threats and risk tolerance.

Marketing

Marketing Digital transformation Technology Cybersecurity

Best Managed Security Service Providers (MSSPs)

eSecurity Planet

JANUARY 27, 2022

As threats mount from ransomware gangs , Russian-backed hacker groups , and other nation-sponsored attackers and as the growth in remote work makes security management increasingly complicated, many companies are finding it makes sense to turn to a managed security service provider (MSSP) for help with handling an extremely complex threat landscape.

Firewall

Firewall Threat Detection DDOS Marketing

Meeting Customers Where They Are …. And Where They Don’t Want to Be

Cisco Security

SEPTEMBER 30, 2021

In fact, 25% or more companies experienced a jump in cyber threats or alerts since March 2020 ( Cisco’s Future of Secure Remote Work Report ). The concern over ransomware attacks in a hybrid workplace increased 69% among leaders ( Security Magazine ). Seeking a secure and simple solution.

Marketing

Marketing Firewall Cybersecurity Cyber threats

Cyber Security Informer

Microsoft warns about ongoing PonyFinal ransomware attacks

STRRAT RAT spreads masquerading as ransomware

Webinars

Trending Sources

Ransomware, BEC and Phishing Still Top Concerns, per 2021 Threat Report

Webinars

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Customized threat intelligence can track down ransomware gangs

What a difference a year makes, or does it?

Microsoft warns TA505 changed tactic in an ongoing malware campaign

CISA alert warns of Emotet attacks on US govt entities

Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

Iran-linked APT groups continue to evolve

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

More Than 90 Percent of Malware in Q2 Came Via Encrypted Traffic: WatchGuard

Emotet operators are running Halloween-themed campaigns

Trickbot is the most prolific malware operation using COVID-19 themed lures

Top VC Firms in Cybersecurity of 2022

Demand, CyberInsurance, and Automation/AI Are the Future of InfoSec

Microsoft partnered with other security firms to takedown TrickBot botnet

GUEST ESSAY: Here’s why managed security services — MSS and MSSP — are catching on

Best Managed Security Service Providers (MSSPs)

Meeting Customers Where They Are …. And Where They Don’t Want to Be

Stay Connected