Security Affairs

MAY 1, 2021

Taiwanese vendor QNAP is warning its customers of AgeLocker ransomware attacks on their NAS devices. Crooks behind the AgeLocker ransomware operation are targeting QNAP NAS devices, the Taiwanese vendor warns. If you must connect your NAS to the internet, we highly recommend using a trusted VPN or a myQNAPcloud link.”

Ransomware 113

Ransomware Cryptocurrency Malware Internet 113

Security Affairs

OCTOBER 22, 2022

Healthcare and Public Health sector with ransomware. businesses, mainly in the Healthcare and Public Health (HPH) Sector, with ransomware operations. The Daixin Team is a ransomware and data extortion group that has been active since at least June 2022. The threat actors obtained the VPN credentials through phishing attacks.

Ransomware 69

Ransomware VPN Cybercrime Accountability 69

Security Affairs

APRIL 25, 2022

At least 60 entities worldwide have been breached by BlackCat ransomware, warns a flash report published by the U.S. Federal Bureau of Investigation (FBI) published a flash report that states that at least 60 entities worldwide have been breached by BlackCat ransomware (aka ALPHV and Noberus) since it started its operations in November.

Ransomware 104

Ransomware Antivirus Passwords Malware 104

Security Affairs

MARCH 19, 2022

The Federal Bureau of Investigation (FBI) reported that AvosLocker ransomware is being used in attacks targeting US critical infrastructure. The Federal Bureau of Investigation (FBI) published a joint cybersecurity advisory warning of AvosLocker ransomware attacks targeting multiple US critical infrastructure.

Ransomware 97

Ransomware DDOS Passwords Backups 97

Security Affairs

SEPTEMBER 6, 2022

QNAP warns customers of ongoing DeadBolt ransomware attacks that are exploiting a zero-day vulnerability in Photo Station. QNAP warns customers of an ongoing wave of DeadBolt ransomware attacks, threat actors are exploiting a zero-day vulnerability in Photo Station. Once encrypted the content of the device, the ransomware appends.

Ransomware 85

Ransomware Internet Internet Encryption 85

Security Affairs

MARCH 26, 2021

The Federal Bureau of Investigation (FBI) issued an alert to warn that the Mamba ransomware is abusing the DiskCryptor open source tool to encrypt entire drives. Mamba ransomware is one of the first malware that encrypted hard drives rather than files that was detected in public attacks. ” reads the alert published by the FBI.

Ransomware 144

Ransomware Encryption Passwords Malware 144

Security Affairs

SEPTEMBER 3, 2021

FBI warns ransomware gangs are actively targeting organizations in the food and agriculture sector. Small farms, large producers, processors and manufacturers, and markets and restaurants are particularly exposed to ransomware attacks. Install updates/patch operating systems, software, and firmware as soon as they are released.

Ransomware 97

Ransomware Passwords Backups Firmware 97

Security Affairs

MAY 13, 2021

FBI and DHS’s CISA have published a joint alert on DarkSide ransomware activity after the disruptive attack on Colonial Pipeline. FBI and DHS’s CISA have published a joint alert to warn of ransomware attacks conducted by the DarkSide group. The group provides Ransomware-as-a-Service (RaaS) to a network of affiliates.

Ransomware 109

Ransomware Healthcare Phishing Risk 109

Security Affairs

JUNE 23, 2021

A critical vulnerability, tracked as CVE-2021-20019 , in SonicWall VPN appliances was only partially patched last year and could allow a remote attacker to steal sensitive data. The flaw resides in the HTTP/HTTPS service used for product management as well as SSL VPN remote access. “An reads the analysis published by Tripwire.

VPN 84

VPN Firewall Firmware Authentication 84

Security Affairs

SEPTEMBER 15, 2020

7 ] CVE-2019-19781 : Citrix Virtual Private Network (VPN) Appliances – CISA has observed the threat actors attempting to discover vulnerable Citrix VPN Appliances. Citrix blog post: firmware updates for Citrix ADC and Citrix Gateway versions 12.1 SecurityAffairs – hacking, China). Pierluigi Paganini.

Government 73

Government VPN Firmware Energy and Utilities 73

Security Affairs

APRIL 11, 2021

Clop Ransomware operators plunder US universities Malware attack on Applus blocked vehicle inspections in some US states 2,5M+ users can check whether their data were exposed in Facebook data leak 33.4% SecurityAffairs – hacking, newsletter). Every week the best security articles from Security Affairs free for you in your email box.

Cyber Attacks 53

Cyber Attacks Firmware Malware VPN 53

Malwarebytes

JUNE 26, 2023

Microsoft claims to have traced this particular campaign to a member of a hacking forum who offers several tools for sale in what may be a dedicated malware as a service operation. Maintain device health with updates: Make sure devices are up to date with the latest firmware and patches.

IoT 79

IoT Adware Firmware DDOS 79

Security Affairs

AUGUST 12, 2018

. · Group-IB experts record a massive surge of user data leaks form cryptocurrency exchanges. · HP releases firmware updates for two critical RCE flaws in Inkjet Printers. · TSMC Chip Maker confirms its facilities were infected with WannaCry ransomware. · GitHub started warning users when adopting compromised credentials. · (..)

DNS 42

DNS Firmware Advertising Surveillance 42

SecureList

DECEMBER 14, 2022

On the very first day of the conflict (February 24, 2022), a massive wave of indiscriminate pseudo-ransomware and wiper attacks hit Ukrainian entities. The volume of wiper and ransomware attacks quickly subsided after the initial wave, but a limited number of notable incidents were still reported.

DDOS 138

DDOS Ransomware Government Energy and Utilities 138

eSecurity Planet

MARCH 1, 2023

Update your router firmware from your router’s manufacturer and install them to ensure your router is up to date and secure. Back up important data , as there is no better defense against ransomware. Change it often, particularly as employees leave, and use a guest network if possible.

Wireless 98

Wireless Encryption Authentication IoT 98

SecureList

SEPTEMBER 21, 2023

We conducted an analysis of the IoT threat landscape for 2023, as well as the products and services offered on the dark web related to hacking connected devices. Another type of service sold on the dark web is IoT hacking. DeadBolt, which affected thousands of QNAP NAS devices in 2022, is a prominent example of IoT ransomware.

IoT 101

IoT DDOS Passwords Malware 101

Adam Levin

FEBRUARY 10, 2020

But, then again, you may have been hacked–“wiped” being the current term of art and something Iran has earned a reputation for. Ransomware is a very likely form of attack, and no amount of ransom will guarantee that you get your data back. You may have made a mistake. You might need to reboot your device.

Passwords 245

Passwords Phishing Password Management Accountability 245

Security Affairs

FEBRUARY 23, 2020

Organizers of major hacking conferences in Asia put them on hold due to Coronavirus outbreak. FC Barcelona and the International Olympic Committee Twitter accounts hacked. Fox Kitten Campaign – Iranian hackers exploit 1-day VPN flaws in attacks. Fox Kitten Campaign – Iranian hackers exploit 1-day VPN flaws in attacks.

Artificial Intelligence 62

Artificial Intelligence eCommerce Firmware Hacking 62

eSecurity Planet

MARCH 4, 2024

State actors actively attack Ivanti, Ubiquity, and Microsoft’s Windows AppLocker, and ransomware attackers probe for unpatched ScreenConnect servers in this week’s vulnerability recap. February 27, 2024 Ransomware Gangs Target Unpatched ScreenConnect Servers Type of vulnerability: Authentication bypass and path traversal.

IoT 117

IoT Internet Internet Ransomware 117

SecureList

OCTOBER 26, 2021

Upon further investigation we also discovered additional implants deployed through both ShadowPad and ShadowShredder, such as Quarian backdoor, PlugX, Poison Ivy and other hack tools. Historically, Lazarus used MATA to attack various industries for cybercrime-like intentions: stealing customer databases and spreading ransomware.

Malware 144

Malware Government Surveillance Spyware 144

SecureList

NOVEMBER 14, 2022

Looking back at past leaks of private companies providing such services, such as in the case of Hacking Team, we learned that many states all over the world were buying these capabilities, whether to complement their in-house technologies or as a stand-alone solution they couldn’t develop.

Firmware 117

Firmware Surveillance Mobile Telecommunications 117