Security Affairs

APRIL 25, 2022

ALPHV has been advertising the BlackCat Ransomware-as-a-Service (RaaS) on the cybercrime forums XSS and Exploit since early December. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Consider installing and using a virtual private network (VPN).

Ransomware 111

Ransomware Antivirus Passwords Malware 111

SecureWorld News

OCTOBER 8, 2023

Use the administrator account only for maintenance, software installation, or firmware updates. Attention should be paid to protecting routers and updating their firmware. While OS updates are now commonly practiced, router firmware updates remain an overlooked aspect. Opt for strong, hard-to-crack passwords.

Firmware 89

Firmware IoT Accountability Passwords 89

SiteLock

AUGUST 27, 2021

The consequences of which are not only born by companies who are the primary targets of cybercrime. To help avoid these online risks, it is highly recommended to use a Virtual Private Network (VPN). VPNs are the baseline cybersecurity tool to safeguard internet-enabled devices and a home network. Update, Update, Update.

IoT 98

IoT Spyware VPN Passwords 98

Security Affairs

DECEMBER 22, 2022

Maintain device health with updates: Make sure devices are up to date with the latest firmware and patches. Use least privileges access: Use a secure virtual private network (VPN) service for remote access and restrict remote access to the device.

IoT 116

IoT DDOS Malware Firmware 116

Security Affairs

SEPTEMBER 6, 2022

We recommend users to make use of the myQNAPcloud Link feature provided by QNAP, or enable the VPN service. At the end of January, QNAP forced the firmware update for its Network Attached Storage (NAS) devices to protect its customers against the DeadBolt ransomware. This is to enhance the security of your QNAP NAS.

Ransomware 91

Ransomware Internet Internet Encryption 91

Security Affairs

JULY 8, 2022

……… “ The vendor recommends not exposing the SMB service to the internet and using VPN to access the NAS and reduce the attack surface. Go to Control Panel > System > Firmware Update. Bitcoin wallet is unique for you, so we can find out what you paid. Next to Lowest SMB version , select SMB 2 or higher.

Ransomware 98

Ransomware Encryption Passwords Internet 98

Security Affairs

MARCH 19, 2022

Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Consider installing and using a VPN. Ensure copies of critical data are not accessible for modification or deletion from the system where the data resides. Avoid reusing passwords for multiple accounts.

Ransomware 103

Ransomware DDOS Passwords Backups 103

Malwarebytes

MAY 28, 2021

Wizard Spider is a cybercrime group affiliated with a what is sometimes called the Ransomware Cartel , a collective of underground groups identified by threat intelligence company Analyst1. Install updates/patch operating systems, software, and firmware as soon as they are released. Consider installing and using a VPN.

Healthcare 108

Healthcare Ransomware Encryption Passwords 108

Malwarebytes

MAY 13, 2021

If you have to use public WiFi hotspots, it’s wise to also use a VPN to keep your activity private while you use that connection. A VPN wraps your network traffic (including web browsing, email, and other things) in a protective tunnel and makes up for any weaknesses in their encryption.

Wireless 99

Wireless VPN Internet Internet 99

SecureList

DECEMBER 14, 2022

While the impact of these destructive cyber-attacks paled in comparison to the effects of the kinetic attacks taking place at the same time, it should be noted that this capability could in theory be directed against any country outside of the context of an armed conflict and under the pretense of traditional cybercrime activity.

DDOS 137

DDOS Ransomware Government Energy and Utilities 137

SecureList

MAY 10, 2021

To prevent attacks via RDP, it is recommended to hide RDP servers behind a VPN or disable UDP port 3389. That said, a VPN is no panacea if it too is vulnerable to amplification attacks. In Q1 2021, for instance, attackers went after Powerhouse VPN servers.

DDOS 110

DDOS Cryptocurrency Media Marketing 110

SecureList

OCTOBER 26, 2021

Historically, Lazarus used MATA to attack various industries for cybercrime-like intentions: stealing customer databases and spreading ransomware. The samples we analyzed mimicked various applications such as private messaging, VPN, and media services. Southeast Asia and Korean Peninsula.

Malware 143

Malware Government Surveillance Spyware 143

SecureList

NOVEMBER 14, 2022

A recent leak has put it in the hands of cybercrime actors and it is very likely that by the end of the year we will see it involved in APT cases too. Okta was breached through one of its service providers, Sitel, itself compromised via the insecure VPN gateway of a recently acquired company.

Firmware 116

Firmware Surveillance Mobile Telecommunications 116