Krebs on Security

NOVEMBER 17, 2022

Peter is an IT manager for a technology manufacturer that got hit with a Russian ransomware strain called “ Zeppelin ” in May 2020. He’d been on the job less than six months, and because of the way his predecessor architected things, the company’s data backups also were encrypted by Zeppelin.

Ransomware 355

Ransomware Encryption Backups Manufacturing 355

Security Affairs

DECEMBER 17, 2024

The threat actors attempted to exploit multiple vulnerabilities in DVRs, including CVE-2017-7921, CVE-2018-9995 , CVE-2020-25078, CVE-2021-33044 , and CVE-2021-36260. In March 2024, threat actors behind this campaign started targeting Internet of Things (IoT) devices in the US, Australia, Canada, New Zealand, and the United Kingdom.

Architecture 107

Architecture Internet Internet Malware 107

Anton on Security

JANUARY 3, 2023

We anticipate an increase in targeting of identities that allow cross-platform authentication as actors recognise the value in compromising identities rather than endpoints. ” [A.C. — this this data point is from 2020 , so treat this as a low boundary in 2023. Now, go and read the report!

Cybersecurity 185

Cybersecurity Backups DDOS Ransomware 185

The Last Watchdog

NOVEMBER 18, 2019

billion by 2020, up 55% as compared to 2015, according to Allied Market Research. Kim: Yes, companies want assurance that they have an offline backup, yet they also want to be able to monitor what people are doing with those backups, as well. LW: Threats are still out there, essentially.

Backups 133

Backups Encryption Data privacy Digital transformation 133

Security Affairs

DECEMBER 17, 2020

According to a private industry notification alert (PIN), sent by the FBI to private organizations, the Bureau is aware of extortion activities that have been happening since February 2020. This criminal practice is adopted since August by several gangs, including Sekhmet , Conti , and Ryuk. PIN Number 20201210-001.

Ransomware 144

Ransomware Backups Firmware Accountability 144

The Last Watchdog

SEPTEMBER 25, 2023

million in 2023, according to IBM’s Cost of a Data Breach Report, and over 700,000 small businesses were targeted in cybersecurity attacks in 2020, according to the Small Business Association. Cloud vendors often handle the security and backup processes automatically, so examine your technology and see if that is the case.

Small Business 222

Small Business Cybersecurity Technology Accountability 222

Security Affairs

MARCH 27, 2020

Researchers warn of a security flaw recently addressed in the WPvivid Backup Plugin that could be exploited to obtain all files of a WordPress website. WebARX experts warn of a missing authorization check recently addressed in the WPvivid Backup Plugin that could be exploited to obtain all files of a WordPress website.

Backups 99

Backups Advertising Authentication Hacking 99

The Last Watchdog

JANUARY 25, 2021

Thanks to a couple of milestone hacks disclosed at the close of 2020 and start of 2021, they will forever be associated with putting supply-chain vulnerabilities on the map. SolarWinds subsequently disclosed to the SEC that threat actors inserted Sunburst into the Orion updates issued to customers between March and June 2020.

Hacking 228

Hacking B2B Authentication Software 228

Security Affairs

NOVEMBER 23, 2020

FBI is warning private industry partners of a surge in Ragnar Locker ransomware activity following a confirmed attack from April 2020. Federal Bureau of Investigation (FBI) issued a flash alert (MU-000140-MW) to warn private industry partners of an increase of the Ragnar Locker ransomware activity following a confirmed attack from April 2020.

Ransomware 145

Ransomware Encryption VPN Backups 145

Spinone

OCTOBER 20, 2020

Although technically OneDrive doesn’t fall under the umbrella of online backup software it can still be used to that end. In this article, you’ll learn how to backup files to OneDrive on a computer and mobile devices. How to backup computer to OneDrive OneDrive is a flexible tool. You still can backup your files.

Backups 52

Backups Mobile Accountability Internet 52

Security Affairs

APRIL 23, 2021

“The Multimedia Console, Media Streaming Add-on, and Hybrid Backup Sync apps need to be updated to the latest available version as well to further secure QNAP NAS from ransomware attacks. The company also recommends updating the Multimedia Console, Media Streaming Add-on, and Hybrid Backup Sync apps to the latest versions.

Ransomware 144

Ransomware Backups Media Malware 144

The Last Watchdog

MAY 5, 2022

Well, the stats are even scarier with over 50% increase in ransomware attacks in 2021, compared to 2020. Back up your data and secure your backups in an offline location. Enable multi-factor authentication (MFA) to access your applications and services, especially for admin access to platforms and backend systems. Ransomware?

Ransomware 247

Ransomware Risk Internet Internet 247

Security Affairs

APRIL 5, 2020

. “It appears that someone was able to breach the server through a shell in avatar uploading in the forum software and get access to our current database dating April 2, 2020,” said Ace. The data breach notice discovered by the data breach monitoring service Under the Breach.

Hacking 141

Hacking Data breaches Advertising Backups 141

Spinone

MAY 8, 2020

On the world scene, 2020 has already been a challenging year for businesses across the board with COVID-19. Coupled with the current pandemic and the cybersecurity threats that have been very prevalent and growing in recent years such as ransomware, there are many different cyber risk types n 2020 that your business needs to prepare for.

Cyber Attacks 78

Cyber Attacks Phishing Backups Ransomware 78

Security Affairs

JUNE 29, 2020

” Unfortunately, most organizations often neglect the protection of RDP accesses and workers use easy-to-guess passwords and with no additional layers of authentication or protection. Between December 2019 and until February 2020, the experts observed a number of attacks between 70,000 and 40,000 on a daily basis.

Passwords 142

Passwords Internet Internet Advertising 142

Malwarebytes

APRIL 14, 2022

Zloader has a Domain Generating Algorithm (DGA) embedded within the malware that creates additional domains as a fallback or backup communication channel for the botnet. We also saw this method recently used against the Strontium group. Domain Generating Algorithm. Stay safe, everyone!

Backups 135

Backups Internet Banking Internet 135

Security Affairs

SEPTEMBER 5, 2020

The fresh alert is the second one related to this threat, the first one (MI-000125-MW Flash Alert) was published on May 4th, 2020. The FBI has issued the 20200901-001 Private Industry Notification about ProLock ransomware stealing data on September 1st. The descriptor could corrupt files larger than 64MB during the decryption process.

Ransomware 145

Ransomware Advertising Malware Backups 145

Security Affairs

OCTOBER 26, 2021

The gang has been active since at least 2020, threat actors hit organizations from various industries. Below are the recommended mitigations included in the alert: Implement regular backups of all data to be stored as air gapped, password protected copies offline. Use double authentication when logging into accounts or services.

Ransomware 143

Ransomware Firmware Antivirus Accountability 143

SecureWorld News

OCTOBER 20, 2021

Instead of encrypting backup data, BlackMatter instead wipes it clean in some cases. Rather than encrypting backup systems, BlackMatter actors wipe or reformat backup data stores and appliances. Backup your data and put procedures in place for restoration. DarkSide made claims it was shutting down earlier this year.

Cybersecurity 98

Cybersecurity Backups Ransomware Encryption 98

Security Affairs

JANUARY 16, 2020

Security systems like firewalls might fail to detect the attempt of exploitation for these issues because authentication bypass vulnerabilities are often logical mistakes in the code and don’t actually involve a suspicious-looking payload. 07-01-2020 – Released protection module to all WebARX customers.

Passwords 97

Passwords Advertising Authentication Backups 97

Security Boulevard

JANUARY 3, 2023

We anticipate an increase in targeting of identities that allow cross-platform authentication as actors recognise the value in compromising identities rather than endpoints. ” [A.C. — this this data point is from 2020 , so treat this as a low boundary in 2023. Monitor for events on backups and create alerts for these”.

Cybersecurity 98

Cybersecurity Backups DDOS Ransomware 98

Hacker Combat

APRIL 22, 2022

increase on 2020 levels. Ransomware cost businesses and individuals $18 billion in 2020, with the average sum paid totaling $220,298 in the first quarter of 2021. 2 Backup your data. 3 Enable multi-factor authentication. There were 2690 reports of ransomware attacks in 2021, which was a 97.1%

Ransomware 119

Ransomware Firewall Passwords Authentication 119

Security Affairs

JUNE 8, 2022

“Upon gaining an initial foothold into a telecommunications organization or network service provider, PRC state-sponsored cyber actors have identified critical users and infrastructure including systems critical to maintaining the security of authentication, authorization, and accounting. Enforce MFA on all VPN connections [ D3-MFA ].

Telecommunications 100

Telecommunications Authentication Passwords Accountability 100

CyberSecurity Insiders

JUNE 24, 2021

Data Backup. Back up all data as well as “every nonstandard application and its supporting IT infrastructure,” and test the backup and recovery to ensure they can handle an attack. Be sure to use controls that prevent online backups from becoming encrypted by ransomware. Least Privilege. User Training.

Ransomware 103

Ransomware Backups Penetration Testing Education 103

Security Affairs

AUGUST 9, 2021

in Australia since 2020. Most of the attacks have been reported in July, the organizations hit by the ransomware gang operate in professional services, construction, manufacturing, retail, and food industries. “The ACSC is aware of numerous incidents involving LockBit and its successor ‘LockBit 2.0’ ” states the advisory.

Ransomware 120

Ransomware Retail Manufacturing Encryption 120

The Last Watchdog

JULY 1, 2019

NormShield found that all of the 2020 presidential hopefuls, thus far, are making sure their campaigns are current on software patching, as well as Domain Name System (DNS) security; and several are doing much more. Beyond Simple Passwords : Provides detailed information on keeping strong passwords and deploying two-factor authentication.

Cyber Risk 159

Cyber Risk DNS Phishing Backups 159

Security Affairs

SEPTEMBER 3, 2021

In another incident that occurred in March 2021, a ransomware attack blocked the operations at a US beverage company, while in a November 2020 attack on a US-based international food and agriculture business threat actors requested the payment of a gigantic $40 million ransom. Implement network segmentation.

Ransomware 118

Ransomware Passwords Backups Firmware 118

Security Affairs

AUGUST 6, 2020

Use two-factor authentication with strong passwords. Recently the FBI has issued a security alert about Netwalker ransomware attacks targeting U.S. and foreign government organizations. The Netwalker ransomware operators have been very active since March and also took advantage of the ongoing COVID-19 outbreak to target organizations.

Ransomware 140

Ransomware VPN Advertising Marketing 140

Malwarebytes

OCTOBER 28, 2021

Ranzy Locker ransomware emerged in late 2020, when the variant began to target victims in the United States. Find and delete shadow volume copies, and other recent backups, and disable the Windows recovery environment. Store regular backups of your data off-site and offline, where attackers can’t reach them. Mitigation.

Ransomware 120

Ransomware Backups Encryption Accountability 120

CyberSecurity Insiders

OCTOBER 13, 2021

In 2020, ransomware attacks grew by 150%, and are growing even faster in 2021 , and with costs to repair the damage they cause in the millions of dollars, many organizations are desperate for solutions. Passwordless authentication also prevents lateral movement between applications and systems from hackers. Effects of Ransomware.

Ransomware 144

Ransomware Passwords Authentication Encryption 144

Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. The joint alert also states that attackers scanning also enumerated devices for the CVE-2020-12812 and CVE-2019-5591 flaws. Use multifactor authentication where possible.

Government 103

Government Passwords Accountability Firmware 103

Malwarebytes

SEPTEMBER 7, 2022

Malwarebytes has been tracking the group since December 2020. But you should also realize that while it’s easy to say that you need reliable and easy to deploy backups, for example, it’s not always easy to follow that advice. Maintain offline backups of data, and regularly maintain backup and restoration.

Education 96

Education Ransomware Backups Passwords 96

Spinone

JANUARY 21, 2018

Many IT specialists are predicting that 2018 will be “the year of the cloud”, as companies increasingly have to deal with the backup needs of massive amounts of data, connect more and more devices to the Internet of Things , and start to appreciate the benefits that a cloud-based IT strategy can offer.

Backups 40

Backups Computers and Electronics Technology Mobile 40

SecureWorld News

JANUARY 22, 2024

Microsoft disclosed that it recently fell victim to a cyberattack by Nobelium, the Russian state-sponsored hacking group infamously responsible for the 2020 SolarWinds supply chain attack. The breach, detected on January 12th, allowed the hackers to access email accounts belonging to members of Microsoft's senior leadership team.

Passwords 117

Passwords Accountability Backups Hacking 117

Malwarebytes

SEPTEMBER 3, 2021

As we pointed out in our State of Malware report, published earlier this year, Malwarebytes recorded an eye-watering 607% increase in malware detections in the agriculture sector in 2020. Malwarebytes recorded a 607% increase in agriculture sector attacks in 2020. Use multi-factor authentication with strong pass phrases where possible.

Ransomware 143

Ransomware Manufacturing Passwords Internet 143

Krebs on Security

JANUARY 8, 2024

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. In 2020, Grichishkin was arrested outside of Russia on a warrant for providing bulletproof hosting services to cybercriminal gangs.

Cybercrime 262

Cybercrime Banking Computers and Electronics DDOS 262

Security Affairs

APRIL 14, 2022

sys “) by triggering the CVE-2020-15368 flaw to execute malicious code in the Windows kernel. Enforce multifactor authentication for all remote access to ICS networks and devices whenever possible. Threat actors can also leverage a tool to install and exploit a known-vulnerable ASRock-signed motherboard driver (“ AsrDrv103.

Passwords 139

Passwords Backups Architecture Cyber Attacks 139