Akira ransomware targets Cisco VPN solutions
Security providers, including Sophos and SentinelOne, note that the Akira ransomware is increasingly targeting Cisco VPN solutions. However, the attack vectors are not yet entirely clear.
The Akira ransomware is increasingly targeting Cisco's VPN solutions. In May of this year, Sophos reported t... Read more
‘Hackers are 327x more likely to react quickly to bugs with a high CVE score’
Cybercriminals are more likely to attack vulnerabilities with a high CVE score within seven days. These are the top one percent of bugs in terms of severity.
Common vulnerabilities and exposures (CVEs) with a high vulnerability score are exploited with 327 times greater likelihood within seven ... Read more
Monti ransomware encrypts files on VMware ESXi servers
The Monti ransomware gang is active again after a short break and is using a new Linux locker for its attacks. VMware ESXi servers, legal firms and government organizations are being targeted.
Monti, a rebrand of the well-known Conti ransomware gang, has restarted its malicious activities after ... Read more
Microsoft OneDrive is a willing ransomware henchman
During Black Hat USA in Las Vegas, a SafeBreach researcher revealed that Microsoft OneDrive is fairly easy to crack. In addition, some of the application's prevention tools can be bypassed. It can even be abused to utilize some of those tools against the end user. Thus, a threat actor who has alrea... Read more
Is Microsoft stealing backup vendors’ lunch with Microsoft 365 Backup?
Microsoft unveiled a new feature at its Inspire event a few weeks ago: Microsoft 365 Backup. This solution gives a quick backup implementation to prevent organizations from having to endure a long recovery phase after unforeseen data loss. It is expected to launch in early 2024.
This announcemen... Read more
Cisco XDR now automatically restores data after ransomware attack
Cisco's XDR platform can now provide "near real-time recovery" of business operations. In partnership with Cohesity, the company now takes a snapshot of important data to provide instant recovery in the event of an incipient ransomware attack.
We previously learned from Cisco that its own XDR pl... Read more
Akira ransomware is new cash cow for Conti criminals
Arctic Wolf Labs has identified the rapidly growing Akira ransomware gang. Just revealed that the new group has ties to members of Conti, the former cybercrime superpower that shattered in 2022.
Akira has many characteristics that are now familiar territory for security researchers. The underlyi... Read more
Fujitsu partners with Deep Instinct to fend off endpoint ransomware
Fujitsu announces what it calls a "unique anti-ransomware service" in partnership with Deep Instinct. It promises to defuse the most sophisticated threats within 20 milliseconds.
Thanks to the deep learning expertise at Deep Instinct, the two parties hope to move the nature of endpoint protectio... Read more
Mallox ransomware targeting Windows is on the rise
Ransomware group Mallox is on a steep rise. The attack targeting Windows systems is experiencing an increase of nearly 174 percent compared to the previous year.
That's according to data from Palo Alto Networks. Mallox abuses unsecured Microsoft SQL servers to spread ransomware. The strain has b... Read more
Meet NoEscape, the return of the Avaddon RaaS gang
With NoEscape, the ransomware gang Avaddon, which has claimed victims in the past, appears to be returning. Since June 2023, NoEscape has been attacking large companies with double-extortion techniques. The cybercriminals steal data and encrypt files on Windows, Linux and VMware ESXi servers. How s... Read more