SecureWorld News

JUNE 6, 2025

The Honeywell 2025 Cyber Threat Report delivers a sobering snapshot of today's industrial cybersecurity landscape: cyberattacks targeting operational technology (OT) environments are no longer rare or speculative—they're persistent, highly targeted, and increasingly sophisticated. OT defenders must plan for: Hybrid threats (e.g.,

Media 82

Media Social Engineering Malware Engineering 82

Krebs on Security

NOVEMBER 17, 2022

Peter is an IT manager for a technology manufacturer that got hit with a Russian ransomware strain called “ Zeppelin ” in May 2020. He’d been on the job less than six months, and because of the way his predecessor architected things, the company’s data backups also were encrypted by Zeppelin.

Ransomware 359

Ransomware Encryption Backups Manufacturing 359

Krebs on Security

DECEMBER 8, 2022

“This group is known for frequently changing malware and driving global trends in criminal malware distribution,” MITRE assessed. Tripwire’s tips for all organizations on avoiding ransomware attacks include: Making secure offsite backups. As noted in last year’s story Don’t Wanna Pay Ransom Gangs?

Healthcare 331

Healthcare Backups Ransomware Insurance 331

Krebs on Security

OCTOBER 2, 2020

Over the past 10 days, someone has been launching a series of coordinated attacks designed to disrupt Trickbot , an enormous collection of more than two million malware-infected Windows PCs that are constantly being harvested for financial data and are often used as the entry point for deploying ransomware within compromised organizations.

Ransomware 363

Ransomware Malware Healthcare Internet 363

Webroot

FEBRUARY 21, 2025

But as technology advances, so do the threats. It combines multiple security capabilities into one easy-to-use package that includes: Antivirus protection Detects and neutralizes viruses, malware , spyware , and ransomware. Secure backup Keeps your critical files safe from data loss or ransomware attacks.

Antivirus 91

Antivirus Identity Theft Cyber threats Phishing 91

Security Affairs

MAY 24, 2025

“The cyber threat actor Silent Ransom Group (SRG), also known as Luna Moth, Chatty Spider, and UNC3753, is targeting law firms using information technology (IT) themed social engineering calls, and callback phishing emails, to gain remote access to systems or devices and steal sensitive data to extort the victims.”

Social Engineering 114

Social Engineering Antivirus Phishing Engineering 114

Jane Frankland

MAY 18, 2025

On the other, hackers are harnessing the same technology to outpace defences, sharing AI-enhanced strategies that make them faster, smarter, cheaper and more adaptable. They cannot keep pace with adversaries who are using adaptive and polymorphic malware that can evade and iterate faster than policies can be updated.

Cybersecurity 130

Cybersecurity Backups Ransomware Firewall 130

SecureWorld News

JANUARY 16, 2025

With the increasing reliance on digital technologies for operational efficiency, this sector has become a prime target for sophisticated cyber and physical threats. Leverage data analysis: Data analytics and IoT technologies are revolutionizing the oil and gas sector, enabling better monitoring and threat detection.

Energy and Utilities 109

Energy and Utilities IoT Artificial Intelligence Backups 109

Adam Levin

AUGUST 26, 2020

Online classes for some 25,000 students in Rialto, California were cancelled following a malware attack and still remain offline as of this writing while school administrators are left to figure out how to collect and inspect several thousand laptops. . Competing services such as Skype and Google Meet offer free versions.

Backups 246

Backups Education Social Engineering Engineering 246

SecureWorld News

MARCH 30, 2023

However, data is as vulnerable as it is valuable, and World Backup Day on Friday, March 31st, is a welcome reminder of the need to have a well thought out data protection strategy in place. The campaign began in 2011 as World Backup Month and was changed to World Backup Day later.

Backups 98

Backups Insurance Cyber Attacks CISO 98

Krebs on Security

JUNE 9, 2020

that their information technology systems had been infiltrated by hackers who specialize in deploying ransomware. Hold Security founder Alex Holden said Florence’s situation is all too common, and that very often ransomware purveyors are inside a victim’s network for weeks or months before launching their malware.

Ransomware 363

Ransomware System Administration Backups Technology 363

Adam Levin

DECEMBER 16, 2020

Here are 12 New Year Resolutions for a safer and more secure digital you in 2021: Think before you click that email link: 2020 was a record-breaking year for ransomware, malware, and phishing , and many, if not most of these attacks were launched with the click on a link in an email. That’s always the case when it comes to cybersecurity.

VPN 245

VPN Antivirus Passwords Backups 245

SecureList

DECEMBER 27, 2024

Changes in the percentage of ICS computers on which malicious objects were blocked in selected industries Diversity of detected malicious objects In the third quarter of 2024, Kaspersky’s protection solutions blocked malware from 11,882 different malware families in various categories on industrial automation systems.

Malware 104

Malware Spyware Internet Internet 104

Security Affairs

SEPTEMBER 2, 2022

Researchers attribute the Raspberry Robin malware to the Russian cybercrime group known as Evil Corp group. IBM Security X-Force researchers discovered similarities between a component used in the Raspberry Robin malware and a Dridex malware loader, which was part of the malicious operations of the cybercrime gang Evil Corp.

Cybercrime 126

Cybercrime Malware Backups Manufacturing 126

eSecurity Planet

JANUARY 21, 2022

Government and private entities in Ukraine have been targeted this month by a barrage of malware that has defaced websites and wiped or corrupted data from Windows- and Linux-based systems. 15, outlined the malware operation that began hitting Ukrainian organizations days before. Malware Designed to Destroy.

Malware 140

Malware Government Ransomware Backups 140

Krebs on Security

APRIL 14, 2023

“Bad actors have figured out ways to use public USB ports to introduce malware and monitoring software onto devices. “Hackers could be waiting to gain access to your personal information by installing malware and monitoring software to your devices. Carry your own charger and USB cord and use an electrical outlet instead.”

Mobile 324

Mobile Software Backups Technology 324

Security Affairs

JULY 29, 2022

Microsoft linked the recently discovered Raspberry Robin Windows malware to the notorious Evil Corp operation. On July 26, 2022, Microsoft researchers discovered that the FakeUpdates malware was being distributed via Raspberry Robin malware. The malware uses TOR exit nodes as a backup C2 infrastructure.

Malware 124

Malware Backups Manufacturing Accountability 124

Krebs on Security

MARCH 2, 2021

PrismHR , a company that sells technology used by other firms to help more than 80,000 small businesses manage payroll, benefits, and human resources, has suffered what appears to be an ongoing ransomware attack that is disrupting many of its services. Hopkinton, Mass.-based

Ransomware 337

Ransomware Small Business Insurance Software 337

Krebs on Security

JANUARY 2, 2019

The company says its systems were hit by the Ryuk ransomware, the same malware strain that crippled printing and delivery operations for multiple major U.S. Cloud hosting provider Dataresolution.net is struggling to bring its systems back online after suffering a ransomware infestation on Christmas Eve, KrebsOnSecurity has learned.

Ransomware 261

Ransomware Malware Backups Accountability 261

Malwarebytes

JUNE 8, 2022

The common wisdom goes that Linux malware is rare, and for the most part this is true. Thanks to its built-in security defenses, strict user privilege model, and transparent source code, Linux enjoys far fewer malware infections than other operating systems. Cloud Snooper. How it works. How it works. HiddenWasp. How it works.

Malware 134

Malware IoT DDOS Firewall 134

Krebs on Security

JUNE 9, 2020

Eleven of the updates address problems Microsoft deems “critical,” meaning they could be exploited by malware or malcontents to seize complete, remote control over vulnerable systems without any help from users. A chief concern among the panoply of patches is a trio of vulnerabilities in the Windows file-sharing technology (a.k.a.

Authentication 350

Authentication Software Backups Accountability 350

Krebs on Security

MAY 7, 2022

The tech giants are part of an industry-led effort to replace passwords, which are easily forgotten, frequently stolen by malware and phishing schemes, or leaked and sold online in the wake of corporate data breaches. Image: Blog.google. But Bellovin said much depends on how securely such cloud systems are administered.

Passwords 271

Passwords Authentication Accountability Backups 271

Krebs on Security

JANUARY 11, 2022

Nine of the vulnerabilities fixed in this month’s Patch Tuesday received Microsoft’s “critical” rating, meaning malware or miscreants can exploit them to gain remote access to vulnerable Windows systems through no help from the user. So do yourself a favor and backup before installing any patches.

Social Engineering 296

Social Engineering Backups Malware Engineering 296

Krebs on Security

OCTOBER 28, 2020

Ransomware attackers often spend weeks or months inside of a target’s network before attempting to deploy malware across the network that encrypts servers and desktop systems unless and until a ransom demand is met. In some cases, this allows the intruders to profit even if their malware somehow fails to do its job.

Hacking 358

Hacking Ransomware Banking Accountability 358

SecureList

MAY 15, 2025

Percentage of ICS computers on which denylisted internet resources were blocked, Jan 2022Mar 2025 Changes in the percentage of ICS computers on which initial-infection malware was blocked lead to changes in the percentage of next-stage malware. times more than in the previous quarter) and malicious documents (1.1 pp) respectively.

Spyware 88

Spyware Phishing Internet Internet 88

Security Affairs

FEBRUARY 15, 2025

custody in exchange for Marc Fogel North Korea-linked APT Emerald Sleet is using a new tactic U.S.

Spyware 71

Spyware Firewall Artificial Intelligence Malware 71

Jane Frankland

MAY 3, 2025

However, on the other hand, this same technology is being harnessed by attackers to innovate and intensify their tactics. Assets such as customer data, proprietary technology, and financial systems not only hold immense value but also represent prime targets for cybercriminals.

Cyber Attacks 100

Cyber Attacks Retail Cyber threats Backups 100

Security Affairs

JANUARY 17, 2022

The operators of the SFile ransomware (aka Escal) have developed a Linux version of their malware to expand their operations. “For example, the variant captured this time uses nuctech-gj0okyci (nuctech is the English name of Nuctech Technology Co., as the suffix name. ” reported The Record. . ” reported The Record.

Ransomware 145

Ransomware Encryption Backups Malware 145

Security Affairs

DECEMBER 24, 2022

“We found samples of the Raspberry Robin malware spreading in telecommunications and government office systems beginning September.” ” Raspberry Robin is a Windows worm discovered by cybersecurity researchers from Red Canary, the malware propagates through removable USB devices. .” exe, and rundll32.exe.

Government 98

Government Malware Telecommunications Cybercrime 98

eSecurity Planet

JULY 8, 2022

Ransomware has now emerged as one of the key reasons to have a DR plan and DR technology in place. But it also requires software to orchestrate data movement, backup and restore technology to ensure a current copy of data is available, and the ability to recover systems and data rapidly.

Backups 142

Backups Ransomware Technology Marketing 142

CyberSecurity Insiders

APRIL 9, 2021

European Enterprises mainly involved in manufacturing are being targeted by a new strain of Ransomware dubbed as Cring and confirmed sources say that the malware is being spread by exploitation of Fortinet VPN Vulnerability.

Ransomware 140

Ransomware VPN Manufacturing Backups 140

Security Affairs

AUGUST 30, 2022

A group of researchers from the Georgia Institute of Technology discovered malicious plugins on tens of thousands of WordPress sites. Post-deployment attacks infected $834K worth of previously benign plugins with malware.” Among these, $41.5K had been spent on 3,685 malicious plugins sold on legitimate plugin marketplaces.

Backups 145

Backups Malware Technology Hacking 145

CyberSecurity Insiders

FEBRUARY 16, 2021

Mutuelle Nationale des Hospitaliers has become a victim of file encrypting malware attack joining the list of entities like Brazil’s government networks, Texas Department of Transportation and Tyler technologies were hit by the same variant of malware.

Cyber Attacks 144

Cyber Attacks Insurance Backups Encryption 144

eSecurity Planet

JUNE 16, 2022

However, basic cybersecurity tools and practices, like patching , strong passwords , and multi-factor authentication (MFA), “can prevent 80 to 90% of cyberattacks,” said Anne Neuberger, deputy national security advisor for cyber and emerging technologies, during a White House press conference in Sept. Cyberattack Statistics. Ransomware.

Backups 145

Backups Ransomware Firewall Malware 145

SecureList

APRIL 25, 2025

While external malware now faces greater permission restrictions, pre-installed malware within system partitions has become impossible to remove. The modular architecture of the malware gives attackers virtually unlimited control over the system, enabling them to tailor functionality to specific applications.

Cryptocurrency 80

Cryptocurrency Malware Firmware Accountability 80

Security Affairs

AUGUST 21, 2021

RRA could be used by organizations to determine their level of exposure to ransomware attacks against their information technology (IT), operational technology (OT), or industrial control system (ICS) assets. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, CISA).

Data breaches 124

Data breaches Ransomware Backups Technology 124

SecureList

DECEMBER 23, 2024

Victims get infected via phishing emails containing a malicious document that exploits a vulnerability in the formula editor ( CVE-2018-0802 ) to download and execute malware code. vbs VBShower Cleaner After the download is complete, the malware adds a registry key to auto-run the VBShower Launcher script.

Encryption 135

Encryption Penetration Testing Malware Phishing 135