Backups and Internet - Cyber Security Informer

Don’t Wanna Pay Ransom Gangs? Test Your Backups.

Krebs on Security

JULY 19, 2021

Browse the comments on virtually any story about a ransomware attack and you will almost surely encounter the view that the victim organization could have avoided paying their extortionists if only they’d had proper data backups. “It can be [that they] have 50 petabytes of backups … but it’s in a … facility 30 miles away.…

Backups

Backups Ransomware Encryption Insurance

Follow the 3-2-1 Rules of Data Backups

Adam Levin

MARCH 31, 2022

Backups are inherently fallible, and can fall prey to malware, ransomware, power surges, and hardware failure. The only way to make sure your data is truly secured is by having backups of your backups. Any backup strategy needs to keep worst-case scenarios in mind by using at least two different types of storage.

Backups

Backups Media Malware Internet

MyBook Users Urged to Unplug Devices from Internet

Krebs on Security

JUNE 25, 2021

Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a critical flaw that can be triggered by anyone who knows the Internet address of an affected device.

Internet

Internet Internet Backups Small Business

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Hidden Anti-Cryptography Provisions in Internet Anti-Trust Bills

Schneier on Security

JUNE 21, 2022

Two bills attempting to reduce the power of Internet monopolies are currently being debated in Congress: S. Reducing the power to tech monopolies would do more to “fix” the Internet than any other single action, and I am generally in favor of them both. 2992, the American Innovation and Choice Online Act ; and S.

Internet

Internet Internet Encryption Backups

Google introduces direct Cloud Backup and Disaster Recovery service

CyberSecurity Insiders

SEPTEMBER 19, 2022

To help customers recover from data incidents, Google, the internet giant, has introduced cloud backup and Disaster Recovery (DR) feature from its console to all its customers directly from its console. Now, to those who aren’t aware of a storage solution with an “Incremental Forever” backup solution, here’s a gist.

Backups

Backups Engineering Internet Internet

What Damage Can Happen If Data Leaks When Quantum Computing Breaks Today’s Encryption

Joseph Steinberg

JANUARY 19, 2022

People and organizations around the globe rely on encryption as the primary method of keeping data secure when transmitted across the Internet. Do you know, for example, where all of your backups are – even the ones made years ago? A single long-forgotten laptop, ZIP disk, CD, or backup tape – or even an old floppy disk!

Encryption

Encryption Backups Banking Artificial Intelligence

Microsoft Patch Tuesday, August 2020 Edition

Krebs on Security

AUGUST 11, 2020

Yes, good people of the Windows world, it’s time once again to backup and patch up! The most concerning of these appears to be CVE-2020-1380 , which is a weaknesses in Internet Explorer that could result in system compromise just by browsing with IE to a hacked or malicious website.

Backups

Backups Internet Internet Malware

It's 2021: Have you checked your backups?

Adam Shostack

JANUARY 2, 2025

As the expression goes, no one cares about backups, they care about restores. As the expression goes, no one cares about backups, they care about restores. According to the Internet, Time Machine and Synology NAS servers don't play well together. Do yours work? Do yours work?

Backups

Backups Firmware Passwords Internet

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

With adversaries destroying backups to increase extortion payouts, recovery will grow harder and slower, emphasizing the need for stronger security controls and architecture. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be.

Cyber threats

Cyber threats CISO IoT Phishing

REvil Ransomware Gang Starts Auctioning Victim Data

Krebs on Security

JUNE 2, 2020

“Others have gotten the message about the need for good backups, and probably don’t need to pay. Disable RDP: Short for Remote Desktop Protocol, this feature of Windows allows a system to be remotely administered over the Internet. It may be worth hiring a competent security firm to make sure this is done right.

Ransomware

Ransomware Backups Encryption Internet

GUEST ESSAY: Best practices checklists each individual computer user still needs to follow

The Last Watchdog

MAY 9, 2022

If you use the Internet on your computer, then it is connected to the widest network there is – the World Wide Web. Since most of them are acting in the Internet environment, it is crucial that they always stay up to date and patched, because cyber-felons use vulnerabilities in older/unpatched versions to get control of your system.

Backups

Backups Firewall Software Mobile

South African telecom provider Cell C disclosed a data breach following a cyberattack

Security Affairs

APRIL 13, 2025

The company founded in 2001 offers prepaid and postpaid mobile plans, data bundles and internet services, fiber broadband, roaming and international calling, SIM-only plans and device deals. Backups are insufficient; IPS is recommended for protection. Victims include AMD and Keralty. They shame non-payers by leaking data.

Data breaches

Data breaches Unstructured Data Identity Theft Healthcare

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

Security Affairs

DECEMBER 17, 2024

The FBI warned of a fresh wave of HiatusRAT malware attacks targeting internet-facing Chinese-branded web cameras and DVRs. In March 2024, threat actors behind this campaign started targeting Internet of Things (IoT) devices in the US, Australia, Canada, New Zealand, and the United Kingdom. ” reads the PIN report.

Architecture

Architecture Internet Internet Malware

Ukrainian Cyber Alliance destroyed the connectivity of Russian ISP Nodex

Security Affairs

JANUARY 9, 2025

The images include the consoles of the Veeam backup and Hewlett Packard Enterprise server. We are raising it from backup copies. Internet monitoring service NetBlocks confirmed a disruption in Nodexs connectivity following the attack on Tuesday night. Internet should work for many. “Dear subscribers!

Backups

Backups Internet Internet Hacking

Warning the World of a Ticking Time Bomb

Krebs on Security

MARCH 9, 2021

Security experts now are desperately trying to reach tens of thousands of victim organizations with a single message: Whether you have patched yet or have been hacked, backup any data stored on those servers immediately. “The sooner they can run a backup, the better. AVERTING MASS-RANSOMWARE.

Backups

Backups Hacking Ransomware Cybercrime

No company too small for Phobos ransomware gang, indictment reveals

Malwarebytes

DECEMBER 2, 2024

Patch known vulnerabilities in internet-facing software and disable or harden the login credentials for remote work tools like RDP ports and VPNs. Create offsite, offline backups. Keep backups offsite and offline, beyond the reach of attackers. Prevent intrusions and stop malicious encryption. Don’t get attacked twice.

Ransomware

Ransomware Backups Small Business Malware

New Ransom Payment Schemes Target Executives, Telemedicine

Krebs on Security

DECEMBER 8, 2022

The first centers on targeting healthcare organizations that offer consultations over the Internet and sending them booby-trapped medical records for the “patient.” Tripwire’s tips for all organizations on avoiding ransomware attacks include: Making secure offsite backups. ”

Healthcare

Healthcare Backups Ransomware Insurance

Microsoft Patch Tuesday, March 2021 Edition

Krebs on Security

MARCH 9, 2021

Top of the heap this month (apart from the ongoing, global Exchange Server mass-compromise ) is a patch for an Internet Explorer bug that is seeing active exploitation. “We strongly encourage all organizations that rely on Internet Explorer and Microsoft Edge (EdgeHTML-Based) to apply these patches as soon as possible.”

DNS

DNS Internet Internet Software

8 security tips for small businesses

Malwarebytes

NOVEMBER 6, 2024

If your company has internet facing assets—and who doesn’t—it’s important to apply network segmentation. A common step for small organizations is to separate the systems that require internet access from those that don’t. Make sure you have backups that are as recent as possible and that are easy to deploy.

Small Business

Small Business Backups Firewall VPN

‘Wormable’ Flaw Leads July Microsoft Patches

Krebs on Security

JULY 14, 2020

A full 17 other critical flaws fixed in this release tackle security weaknesses that Microsoft assigned its most dire “critical” rating, such as in Office , Internet Exploder , SharePoint , Visual Studio , and Microsoft’s.NET Framework. Thankfully, I was able to restore from a recent backup.

DNS

DNS Backups Software System Administration

The CrowdStrike Outage and Market-Driven Brittleness

Schneier on Security

JULY 25, 2024

Friday’s massive internet outage, caused by a mid-sized tech company called CrowdStrike, disrupted major airlines, hospitals, and banks. The catastrophe is yet another reminder of how brittle global internet infrastructure is. Compare the internet with ecological systems. Nearly 7,000 flights were canceled.

Marketing

Marketing Software Internet Internet

Microsoft Patches Six Zero-Day Security Holes

Krebs on Security

JUNE 8, 2021

“This can be hugely damaging in the event of ransomware attacks, where high privileges can enable the attackers to stop or destroy backups and other security tools,” Breen said. So do yourself a favor and backup before installing any patches.

Backups

Backups Ransomware Cyber threats Phishing

Payroll Provider Gives Extortionists a Payday

Krebs on Security

FEBRUARY 23, 2019

2, 2019, this blog reported that the company — which had chosen not to pay the ransom and instead restore everything from backups — was still struggling to bring its systems back online. Other than different antivirus and not allowing RDP connections to the internet they don’t seem to have put any additional safeguards in place.

Ransomware

Ransomware Backups Encryption Internet

911 Proxy Service Implodes After Disclosing Breach

Krebs on Security

JULY 29, 2022

re is was one of the original “residential proxy” networks, which allow someone to rent a residential IP address to use as a relay for his/her Internet communications, providing anonymity and the advantage of being perceived as a residential user surfing the web. re servers, data and backups of that data.

Cybercrime

Cybercrime Software VPN Backups

Microsoft Patch Tuesday, April 2020 Edition

Krebs on Security

APRIL 14, 2020

Many security news sites are reporting that Microsoft addressed a total of four zero-day flaws this month, but it appears the advisory for a critical Internet Explorer flaw ( CVE-2020-0968 ) has been revised to indicate Microsoft has not yet received reports of it being used in active attacks. SANS Internet Storm Center on Patch Tuesday.

Backups

Backups Software Internet Internet

Protect those you love from internet scams this Valentine’s Day

Webroot

FEBRUARY 10, 2025

February 11 marks Safer Internet Day , encouraging us to work together to make the internet a safer and better place. And while February 14 usually means love is in the air, Valentines Day is also a popular day with internet scammers. Looking for more information and solutions?

Scams

Scams Internet Internet Antivirus

Microsoft Patch Tuesday, February 2020 Edition

Krebs on Security

FEBRUARY 11, 2020

Microsoft today released updates to plug nearly 100 security holes in various versions of its Windows operating system and related software, including a zero-day vulnerability in Internet Explorer (IE) that is actively being exploited. So do yourself a favor and backup your files before installing any patches.

Backups

Backups Malware Internet Internet

Patch Tuesday, March 2019 Edition

Krebs on Security

MARCH 12, 2019

Microsoft on Tuesday pushed out software updates to fix more than five dozen security vulnerabilities in its Windows operating systems, Internet Explorer , Edge , Office and Sharepoint. The bulk of the remaining critical bugs fixed this month reside in Internet Explorer, Edge and Office. SANS Internet Storm Center.

Internet

Internet Internet Backups Malware

Sick of internet outages? How I easily set up a backup connection in my home office

Zero Day

MARCH 14, 2025

A failover internet connection is a good idea if you work from home - and it's not complicated to set up. Here's what to know.

Internet

Internet Internet Backups

Why Businesses Must Address Risks of Quantum Computing NOW Rather Than Wait Until Problems Arrive

Joseph Steinberg

JULY 20, 2022

And, of course, the consequences of not fully locating and re-protecting old data can be catastrophic; a single long-forgotten laptop, ZIP disk, CD, or backup tape – or even an old floppy disk! could potentially lead to terrible financial losses, legal headaches, and ruined reputations.

Risk

Risk Encryption Government Artificial Intelligence

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 13, 2024

A cyber attack hit Iranian government sites and nuclear facilities Ransomware operators exploited Veeam Backup & Replication flaw CVE-2024-40711 in recent attacks GitLab fixed a critical flaw that could allow arbitrary CI/CD pipeline execution Iran and China-linked actors used ChatGPT for preparing attacks Internet Archive data breach impacted (..)

Data breaches

Data breaches Cryptocurrency Cybercrime Artificial Intelligence

Microsoft Patch Tuesday, July 2021 Edition

Krebs on Security

JULY 13, 2021

Other products that got patches today include Microsoft Office , Bing , SharePoint Server , Internet Explorer , and Visual Studio. The SANS Internet Storm Center as always has a nice visual breakdown of all the patches by severity. So do yourself a favor and backup before installing any patches.

DNS

DNS Engineering Internet Internet

Microsoft Patch Tuesday, May 2020 Edition

Krebs on Security

MAY 12, 2020

A reliable backup means you’re not losing your mind when the odd buggy patch causes problems booting the system. So backup your files before installing any patches. Further reading: SANS Internet Storm Center breakdown by vulnerability and severity. Microsoft’s Security Update catalog.

Backups

Backups Software Risk Media

Attacks Aimed at Disrupting the Trickbot Botnet

Krebs on Security

OCTOBER 2, 2020

The crooks running the Trickbot botnet typically use these config files to pass new instructions to their fleet of infected PCs, such as the Internet address where hacked systems should download new updates to the malware. But the new configuration file pushed on Sept.

Ransomware

Ransomware Malware Healthcare Internet

Columbus Ransomware Attack Exposes 500,000+ Residents’ Data: How to Stay Safe

eSecurity Planet

NOVEMBER 6, 2024

Despite efforts by Columbus officials to thwart the attack by disconnecting the city’s systems from the internet, it became evident later that substantial data had been stolen and circulated on the dark web. In Columbus’s case, Rhysida reportedly demanded 30 bitcoins — around $1.9

Ransomware

Ransomware Authentication Identity Theft Penetration Testing

GUEST ESSAY: Leveraging ‘zero trust’ and ‘remote access’ strategies to mitigate ransomware risks

The Last Watchdog

MAY 5, 2022

As an enterprise security team, you could restrict internet access at your egress points, but this doesn’t do much when the workforce is remote. Back up your data and secure your backups in an offline location. In short, anything accessible from the internet should be given extra attention.

Ransomware

Ransomware Risk Internet Internet

Microsoft Patch Tuesday, December 2021 Edition

Krebs on Security

DECEMBER 14, 2021

.” Part of the difficulty in patching against the Log4Shell attack is identifying all of the vulnerable web applications, said Johannes Ullrich , an incident handler and blogger for the SANS Internet Storm Center. So do yourself a favor and backup before installing any patches. “Treat it as such.”

Internet

Internet Internet Backups Data breaches

Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal

SecureWorld News

APRIL 23, 2025

The only method of recovery will be backups, however data shows that backups do not typically survive these breaches. According to our own research, 93% of cyber events involve targeting of backup repositories, and 80% of data thought to be immutable does not survive.

Ransomware

Ransomware CISO Backups Risk

Microsoft Patch Tuesday, August 2021 Edition

Krebs on Security

AUGUST 10, 2021

For a complete rundown of all patches released today and indexed by severity, check out the always-useful Patch Tuesday roundup from the SANS Internet Storm Center. So do yourself a favor and backup before installing any patches. CVE-2021-26424 could be exploited by sending a single malicious data packet to a vulnerable system.

Software

Software Internet Internet Backups

Your Phone May Soon Replace Many of Your Passwords

Krebs on Security

MAY 7, 2022

Experts say the changes should help defeat many types of phishing attacks and ease the overall password burden on Internet users, but caution that a true passwordless future may still be years away for most websites. Image: Blog.google. But Bellovin said much depends on how securely such cloud systems are administered.

Passwords

Passwords Authentication Accountability Mobile

Don’t Let Encryption Become A Double-Edged Sword That Undermines Zero Trust CyberSecurity

Joseph Steinberg

APRIL 21, 2022

Data that must remain private simply cannot be readable by unauthorized parties – and that rule applies both when the relevant information is at rest on an internal server, in the cloud, or on some backup media, as well as when it is in transit over any form of network or other means of communication.

Encryption

Encryption Cybersecurity Artificial Intelligence Backups

Patch Tuesday, May 2024 Edition

Krebs on Security

MAY 14, 2024

Regardless of whether you use a Mac or Windows system (or something else), it’s always a good idea to backup your data and or system before applying any security updates. For a closer look at the individual fixes released by Microsoft today, check out the complete list over at the SANS Internet Storm Center.

Social Engineering

Social Engineering Backups Malware Software

No SOCKS, No Shoes, No Malware Proxy Services!

Krebs on Security

AUGUST 2, 2022

With the recent demise of several popular “proxy” services that let cybercriminals route their malicious traffic through hacked PCs, there is now something of a supply chain crisis gripping the underbelly of the Internet. A review of the Internet addresses historically used by Super-socks[.]biz Image: Spur.us.

Malware

Malware Cybercrime Internet Internet

Microsoft Patch Tuesday, September 2021 Edition

Krebs on Security

SEPTEMBER 14, 2021

Top of the critical heap is CVE-2021-40444 , which affects the “MSHTML” component of Internet Explorer (IE) on Windows 10 and many Windows Server versions. For a complete rundown of all patches released today and indexed by severity, check out the always-useful Patch Tuesday roundup from the SANS Internet Storm Center.

Spyware

Spyware Social Engineering Surveillance Internet

Don’t Wanna Pay Ransom Gangs? Test Your Backups.

Follow the 3-2-1 Rules of Data Backups

Webinars

Trending Sources

MyBook Users Urged to Unplug Devices from Internet

Webinars

Hidden Anti-Cryptography Provisions in Internet Anti-Trust Bills

Google introduces direct Cloud Backup and Disaster Recovery service

What Damage Can Happen If Data Leaks When Quantum Computing Breaks Today’s Encryption

Microsoft Patch Tuesday, August 2020 Edition

It's 2021: Have you checked your backups?

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

REvil Ransomware Gang Starts Auctioning Victim Data

GUEST ESSAY: Best practices checklists each individual computer user still needs to follow

South African telecom provider Cell C disclosed a data breach following a cyberattack

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

Ukrainian Cyber Alliance destroyed the connectivity of Russian ISP Nodex

Warning the World of a Ticking Time Bomb

No company too small for Phobos ransomware gang, indictment reveals

New Ransom Payment Schemes Target Executives, Telemedicine

Microsoft Patch Tuesday, March 2021 Edition

8 security tips for small businesses

‘Wormable’ Flaw Leads July Microsoft Patches

The CrowdStrike Outage and Market-Driven Brittleness

Microsoft Patches Six Zero-Day Security Holes

Payroll Provider Gives Extortionists a Payday

911 Proxy Service Implodes After Disclosing Breach

Microsoft Patch Tuesday, April 2020 Edition

Protect those you love from internet scams this Valentine’s Day

Microsoft Patch Tuesday, February 2020 Edition

Patch Tuesday, March 2019 Edition

Sick of internet outages? How I easily set up a backup connection in my home office

Why Businesses Must Address Risks of Quantum Computing NOW Rather Than Wait Until Problems Arrive

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Microsoft Patch Tuesday, July 2021 Edition

Microsoft Patch Tuesday, May 2020 Edition

Attacks Aimed at Disrupting the Trickbot Botnet

Columbus Ransomware Attack Exposes 500,000+ Residents’ Data: How to Stay Safe

GUEST ESSAY: Leveraging ‘zero trust’ and ‘remote access’ strategies to mitigate ransomware risks

Microsoft Patch Tuesday, December 2021 Edition

Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal

Microsoft Patch Tuesday, August 2021 Edition

Your Phone May Soon Replace Many of Your Passwords

Don’t Let Encryption Become A Double-Edged Sword That Undermines Zero Trust CyberSecurity

Patch Tuesday, May 2024 Edition

No SOCKS, No Shoes, No Malware Proxy Services!

Microsoft Patch Tuesday, September 2021 Edition

Stay Connected