2024, Backups and VPN - Cyber Security Informer

Ransomware operators exploited Veeam Backup & Replication flaw CVE-2024-40711 in recent attacks

Security Affairs

OCTOBER 11, 2024

Sophos reports ransomware operators are exploiting a critical code execution flaw in Veeam Backup & Replication. Sophos researchers warn that ransomware operators are exploiting the critical vulnerability CVE-2024-40711 in Veeam Backup & Replication to create rogue accounts and deploy malware. ” concludes Sophos.

Backups

Backups Ransomware VPN Authentication

Veeam Backup & Replication exploit reused in new Frag ransomware attack

Security Affairs

NOVEMBER 9, 2024

A critical flaw, tracked as CVE-2024-40711, in Veeam Backup & Replication (VBR) was also recently exploited to deploy Frag ransomware. The most severe flaw included in the September 2024 security bulletin is a critical, remote code execution (RCE) vulnerability tracked as CVE-2024-40711 (CVSS v3.1

Backups

Backups Ransomware VPN Accountability

U.S. CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

OCTOBER 19, 2024

Cybersecurity and Infrastructure Security Agency (CISA) adds Veeam Backup and Replication vulnerability to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the Veeam Backup and Replication flaw CVE-2024-40711 (CVSS score of 9.8)

Backups

Backups VPN Ransomware Authentication

Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware

The Hacker News

OCTOBER 14, 2024

Threat actors are actively attempting to exploit a now-patched security flaw in Veeam Backup & Replication to deploy Akira and Fog ransomware. CVE-2024-40711, rated 9.8 out of 10.0

Ransomware

Ransomware VPN Backups Accountability

Nastiest Malware 2024

Webroot

OCTOBER 31, 2024

Steam the Webinar on demand HERE As we look back on the cybersecurity landscape of 2024, it’s clear that the world of digital threats continues to evolve at an alarming pace in parallel with AI. The saga of LockBit in 2024 exemplifies the resilience and adaptability of these cybercriminal groups.

Malware

Malware Ransomware Passwords Healthcare

How to Lose a Fortune with Just One Bad Click

Krebs on Security

DECEMBER 18, 2024

Griffin said a follow-up investigation revealed the attackers had used his Gmail account to gain access to his Coinbase account from a VPN connection in California, providing the multi-factor code from his Google Authenticator app. Tony agreed to speak about his harrowing experience on condition that his last name not be used.

Cryptocurrency

Cryptocurrency Accountability Authentication Phishing

IT threat evolution Q1 2024

SecureList

JUNE 3, 2024

IT threat evolution Q1 2024 IT threat evolution Q1 2024. Mobile statistics IT threat evolution Q1 2024. The common methods for analyzing an iOS mobile infection are either to examine an encrypted full iOS backup or to analyze the network traffic of the affected device.

Banking

Banking Malware Computers and Electronics Mobile

Security Affairs newsletter Round 496 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 3, 2024

Chinese threat actors use Quad7 botnet in password-spray attacks FBI arrested former Disney World employee for hacking computer menus and mislabeling allergy info Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide PTZOptics cameras zero-days actively exploited in the wild New LightSpy spyware (..)

Cryptocurrency

Cryptocurrency Hacking Phishing Cyber Attacks

How to Use Dashlane in 2024: Complete Starter Guide

eSecurity Planet

SEPTEMBER 3, 2024

It includes Hotspot Shield VPN, which enhances your online privacy. While Hotspot Shield may not be the top VPN on the market, it provides satisfactory performance, with download speeds of 95% in Australia and 92% in the US. For a deeper dive into Dashlane’s features and performance, check out this detailed Dashlane review for 2024.

Password Management

Password Management Passwords Encryption VPN

Akira ransomware attack on Tietoevry disrupted the services of many Swedish organizations

Security Affairs

JANUARY 24, 2024

In January 2024, the Finish National Cybersecurity Center (NCSC-FI) reported an increase in Akira ransomware attacks, targeting organizations in the country. Threat actors are wiping NAS and backup devices. The company did not disclose details about the attack, it is unclear if threat actors also stolen data from its systems.

Ransomware

Ransomware VPN Government Retail

Scattered Spider x RansomHub: A New Partnership

Digital Shadows

OCTOBER 23, 2024

Key Points In October 2024, ReliaQuest responded to an intrusion affecting a manufacturing sector customer. This concealed their attack until the environment was encrypted and backups were sabotaged. In October 2024, ReliaQuest investigated an intrusion for a customer in the manufacturing sector. What Happened?

Social Engineering

Social Engineering Engineering Accountability Backups

Vulnerability Recap 4/15/24 – Palo Alto, Microsoft, Ivanti Exploits

eSecurity Planet

APRIL 15, 2024

Threats range from severe weaknesses in Ivanti’s VPN appliances to zero-day exploits in popular software such as Palo Alto Networks’ PAN-OS and Telegram’s Windows client. Employ robust password management techniques, two-factor authentication (2FA), and regular backups of essential data.

Firewall

Firewall VPN Software Risk

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

eSecurity Planet

MAY 2, 2024

Most organizations express confidence in their current status and budgets, but also expect to experience at least one data breach in 2024. 30% data breaches and +23% ransomware for the first two months of 2024. Read on for more details on these threats or jump down to see the linked vendor reports. globally, +19.8%

Cybersecurity

Cybersecurity DDOS Penetration Testing Passwords

Cyber Security Awareness Month: Cyber tune-up checklist

Webroot

OCTOBER 1, 2024

Use a VPN A virtual private network (VPN) protects your online privacy and helps keep your information safe. A trusted VPN encrypts your internet connection, which masks your IP address and keeps hackers away. Use automatic backup Individuals and businesses alike can keep digital information secure by enabling automatic backup.

Security Awareness

Security Awareness Backups Passwords Password Management

Vulnerability Recap 10/15/24 – Patch Tuesday Posts 117 Vulnerabilities

eSecurity Planet

OCTOBER 15, 2024

October 1, 2024 CISA Releases Notice About Optigo Switch Vulnerability Type of vulnerability: Improper filename control and weak authentication. Connect to OneView via secure VPN.” or above — a Windows Netlogon EoP flaw, CVE-2024-38124 , and a Microsoft Configuration Manager RCE vulnerability, CVE-2024-43468.

VPN

VPN Backups Authentication Software

How to Use A Password Manager: Setup, Benefits & Best Practices in 2024

eSecurity Planet

SEPTEMBER 6, 2024

Security firm Proton AG (which offers an open-source password manager that is free to individual users and includes VPN service) cites these characteristics of a secure password: Length: At a minimum, a password should be 12 characters long, but 15 or more characters are recommended. Check out our evaluations by clicking on the links below.

Password Management

Password Management Passwords Accountability Social Engineering

Scattered Spider x RansomHub: A New Partnership

Digital Shadows

OCTOBER 23, 2024

Key Points In October 2024, ReliaQuest responded to an intrusion affecting a manufacturing sector customer. This concealed their attack until the environment was encrypted and backups were sabotaged. In October 2024, ReliaQuest investigated an intrusion for a customer in the manufacturing sector. What Happened?

Social Engineering

Social Engineering Engineering Accountability Backups

-=TWELVE=- is back

SecureList

SEPTEMBER 20, 2024

In the spring of 2024, posts with real people’s personal data began appearing on the -=TWELVE=- Telegram channel. The group stayed off the radar for several months, but as we investigated a late June 2024 attack, we found that it employed techniques identical to those of Twelve and relied on C2 servers linked to the threat actor.

Ransomware

Ransomware Encryption Engineering Passwords

Encryption: How It Works, Types, and the Quantum Future

eSecurity Planet

MAY 25, 2022

Financial institutions in the 1990s and 2000s were some of the first to incorporate encryption to protect online transactions, particularly as backup tapes were lost in transit. While initial standards are expected by 2024, a full mitigation architecture for federal agencies isn’t expected until 2035. Uses of Encryption.

Encryption

Encryption Computers and Electronics Password Management Passwords

Vulnerability Recap 7/15/24 – Industry Patches vs Flaw Exploits

eSecurity Planet

JULY 15, 2024

July 8, 2024 Four Unpatched Flaws Discovered in Gogs Type of vulnerability: Multiple, including argument injection and file deletion. The problem: Four unpatched security issues in Gogs, an open-source Git service, enable attackers to exploit three critical flaws ( CVE-2024-39930 , CVE-2024-39931 , CVE-2024-39932 ; CVSS: 9.9)

Authentication

Authentication Backups Software Risk

Top Cyber Attacker Techniques, August–October 2024

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. Top Techniques: A Closer Look Phishing Techniques: The Evergreen Threat in Cybersecurity Initial access methods were the most common MITRE ATT&CK techniques between May and July 2024.

Cyber Attacks

Cyber Attacks Phishing Ransomware Cyber Insurance

Top Cyber Attacker Techniques, August–October 2024

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. Top Techniques: A Closer Look Phishing Techniques: The Evergreen Threat in Cybersecurity Initial access methods were the most common MITRE ATT&CK techniques between May and July 2024.

Cyber Attacks

Cyber Attacks Phishing Ransomware Cyber Insurance

IoT Secure Development Guide

Pen Test Partners

OCTOBER 9, 2023

Legal Frameworks EU Cyber Resilience Act The EU is introducing new regulations on products with “digital elements” [link] with the expectation that this will become law in 2024. This can be a traditional VPN, reverse SSH tunnel, or private APN on a mobile network. Table 1: Example OWASP project findings Back to Table of contents▲ 2.2.

IoT

IoT Firmware Mobile Manufacturing

Cyber Security Informer

Ransomware operators exploited Veeam Backup & Replication flaw CVE-2024-40711 in recent attacks

Veeam Backup & Replication exploit reused in new Frag ransomware attack

Trending Sources

U.S. CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog

Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware

Nastiest Malware 2024

How to Lose a Fortune with Just One Bad Click

IT threat evolution Q1 2024

Security Affairs newsletter Round 496 by Pierluigi Paganini – INTERNATIONAL EDITION

How to Use Dashlane in 2024: Complete Starter Guide

Akira ransomware attack on Tietoevry disrupted the services of many Swedish organizations

Scattered Spider x RansomHub: A New Partnership

Vulnerability Recap 4/15/24 – Palo Alto, Microsoft, Ivanti Exploits

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

Cyber Security Awareness Month: Cyber tune-up checklist

Vulnerability Recap 10/15/24 – Patch Tuesday Posts 117 Vulnerabilities

How to Use A Password Manager: Setup, Benefits & Best Practices in 2024

Scattered Spider x RansomHub: A New Partnership

-=TWELVE=- is back

Encryption: How It Works, Types, and the Quantum Future

Vulnerability Recap 7/15/24 – Industry Patches vs Flaw Exploits

Top Cyber Attacker Techniques, August–October 2024

Top Cyber Attacker Techniques, August–October 2024

IoT Secure Development Guide

Stay Connected