Krebs on Security

DECEMBER 13, 2021

The consulting firm PricewaterhouseCoopers recently published lessons learned from the disruptive and costly ransomware attack in May 2021 on Ireland’s public health system. PWC’s timeline of the days leading up to the deployment of Conti ransomware on May 14.

Healthcare 263

Healthcare Ransomware Antivirus Software 263

Malwarebytes

JULY 13, 2022

Over the last three months, ransomware gangs have increased the pressure by multiplying in number and unleashing targeted attacks on vulnerable industries, with disruptions to business operations, million-dollar ransom demands, data exfiltration, and extortion. Top industries. Noteworthy March attacks.

Ransomware 106

Ransomware Manufacturing Government Computers and Electronics 106

eSecurity Planet

DECEMBER 19, 2023

After receiving input from industry experts and doing my own analysis of the year’s driving forces, I identified five major cybersecurity trends. Industry experts see that AI will require governance action, cause learning pains, and will be used to both improve and attack cybersecurity.

Cybersecurity 140

Cybersecurity CISO Government Technology 140

SecureList

APRIL 27, 2021

This is our latest installment, focusing on activities that we observed during Q1 2021. In our initial report on Sunburst , we examined the method used by the malware to communicate with its C2 (command-and-control) server and the protocol used to upgrade victims for further exploitation. The most remarkable findings.

Malware 141

Malware Spyware Government Social Engineering 141

eSecurity Planet

APRIL 21, 2021

From news of a collage selling for almost $70 million at Christie’s auction house to a portrayal of Janet Yellen and Morpheus rapping about cryptocurrency on SNL , the current craze is all about non-fungible tokens (NFTs). Also Read: Application Security Vendor List for 2021. Security risks. Application Vulnerabilities.

Cryptocurrency 109

Cryptocurrency Marketing Accountability Scams 109

SecureList

MAY 31, 2021

In our initial report on Sunburst , we examined the method used by the malware to communicate with its C2 (command-and-control) server and the protocol used to upgrade victims for further exploitation. Lazarus targets the defence industry. MS Exchange zero-day vulnerabilities exploited in the wild.

Malware 100

Malware Adware Encryption Architecture 100

Security Boulevard

FEBRUARY 1, 2023

Because every API endpoint has its own unique business logic, each attack is unique, so attackers have to do a lot of probing to uncover an API vulnerability they can exploit. This reconnaissance activity, and any resulting exploit they can propagate, can take days, weeks, or even months to perform. WAAPs have no baseline.

Architecture 52

Architecture Mobile Artificial Intelligence Big data 52

ForAllSecure

SEPTEMBER 21, 2021

What role might the security industry have in identifying or even stopping it? Lodrina Cherne and Martijn Grooten join the The Hacker Mind podcast to discuss their Black Hat USA 2021 presentation. In early September 2021. In a moment we'll hear from two hackers who spoke at Black Hat USA 2021. But what about IoT devices?

Technology 52

Technology Software Surveillance Media 52

ForAllSecure

OCTOBER 5, 2021

Where would we be without it today 24 Seven news and sports updates streaming movies, ordering stuff anytime you want. That would make this denial of service attack roughly twice as powerful as any similar previously recorded DDoS attack at the time. Vamosi: The internet. terabits per second. Davanian: This is Ali.

IoT 52

IoT DDOS Malware Internet 52

ForAllSecure

OCTOBER 25, 2022

Vamosi: In the summer of 2021, the Colonial Pipeline in the US. Using the motto 'Make Ransomware Great Again,' new versions of LockBit are adding new features such as anti-analysis, new extortion methods, and even a ransomware bug bounty program. It’s a clever way for malware to be monetized. Vamosi: Dwell Time.

Ransomware 40

Ransomware Encryption Cybercrime Government 40

SecureList

JULY 29, 2021

This is our latest installment, focusing on activities that we observed during Q2 2021. Further investigation also revealed scripts used by the actor to gain situational awareness post-exploitation, as well as previous use of the infrastructure to operate Cobalt Strike Beacon. The most remarkable findings. Russian-speaking activity.

Malware 142

Malware Phishing Password Management Social Engineering 142

SecureList

NOVEMBER 7, 2022

News overview. As before, most news was focused on the conflict between Russia and Ukraine, but other high-profile events also affected the DDoS landscape this quarter. The defending side managed to eliminate the main damage within 24 hours, although the e-Gov administrative portal continued to experience access problems the day after.

DDOS 109

DDOS Computers and Electronics Internet Internet 109

SecureList

NOVEMBER 14, 2023

Mail servers become priority targets In June, Recorded Future warned that BlueDelta (aka Sofacy, APT28, Fancy Bear and Sednit) exploited vulnerabilities in Roundcube Webmail to hack multiple organizations including government institutions and military entities involved in aviation infrastructure.

Hacking 108

Hacking Energy and Utilities Media Malware 108