Security Affairs

MARCH 19, 2022

AvosLocker operators already advertised in the past a Linux variant, dubbed AvosLinux, of their malware claiming it was able to support Linux and ESXi servers. Implement network segmentation and maintain offline backups of data to ensure limited interruption to the organization. Use multifactor authentication where possible.

Ransomware 98

Ransomware DDOS Passwords Backups 98

Security Affairs

JUNE 25, 2020

A few days ago the group released a press release in which they warned the companies to not try to recover their files from their backup, it also announced the forthcoming LG Electronics data leak. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” continues Cyble. Pierluigi Paganini.

Computers and Electronics 101

Computers and Electronics Ransomware Mobile Telecommunications 101

Security Affairs

OCTOBER 3, 2018

The list of vulnerable devices includes eight LenovoEMC NAS (PX) models, nine Iomega StoreCenter (PX and IX) models and the Lenovo branded devices; ix4-300d, ix2 and EZ Media and Backup Center. Lenovo confirmed that firmware versions 4.1.402.34662 and earlier are vulnerable, users have to download firmware version 4.1.404.34716 (or later).

Hacking 81

Hacking Firmware Advertising Backups 81

Security Affairs

JULY 31, 2019

The list of flaws includes OS Command Injection, Unrestricted Upload of File with Dangerous Type, Cross-site Request Forgery, Small Space of Random Values, Cross-site Scripting, Exposure of Backup file to Unauthorized Control Sphere, Improper Authentication, and Use of Hard-coded Credentials. ” concludes the CISA advisory.

Backups 58

Backups Authentication Advertising Firmware 58

Security Affairs

APRIL 25, 2022

ALPHV has been advertising the BlackCat Ransomware-as-a-Service (RaaS) on the cybercrime forums XSS and Exploit since early December. Regularly back up data, air gap, and password-protect backup copies offline. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released.

Ransomware 106

Ransomware Antivirus Passwords Malware 106

Security Affairs

OCTOBER 13, 2020

If such processes lack proper authentication steps, they could work as gateways for bigger problems. Before the device applies the update, it sends a backup to the servers. Even if a local network is completely secured and all IoT devices on it have firmware and software updated to the last version, a shadow IoT device can wreak havoc.

IoT 134

IoT Cybersecurity Manufacturing Internet 134

Malwarebytes

MAY 28, 2021

Unlike some other underground cybercriminal gangs, Wizard Spider doesn’t openly advertise on underground forums, perhaps for security reasons. Install updates/patch operating systems, software, and firmware as soon as they are released. Use multi-factor authentication where possible. Implement network segmentation.

Healthcare 104

Healthcare Ransomware Encryption Passwords 104