Patch ‘Em or Weep: Study Reveals Most Vulnerable IoT, Connected Assets
Phones, tablets and workstations with unpatched CVEs are a clear and present danger. New Armis study lists the most vulnerable.
ransomware
Old vulnerabilities are still a big problem
A recently flagged phishing campaign aimed at delivering the Agent Tesla RAT to unsuspecting users takes advantage of old vulnerabilities in Microsoft Office that allow remote code execution. “Despite fixes for CVE-2017-11882/CVE-2018-0802 being …
Cybercriminals target MS SQL servers to deliver ransomware
A cyberattack campaign is targeting exposed Microsoft SQL (MS SQL) databases, aiming to deliver ransomware and Cobalt Strike payloads. The attack campaign The attackers target exposed MS SQL servers by brute-forcing access credentials. After having suc…
Weekly Vulnerability Recap – September 4, 2023 – Attackers Hit Network Devices and More
Citrix, Juniper, VMware and Cisco are just a few of the IT vendors whose products made news for security vulnerabilities in the last week.
The post Weekly Vulnerability Recap – September 4, 2023 – Attackers Hit Network Devices and More appeared first on eSecurity Planet.
Ransomware Attack on Fencing Systems Maker Zaun Impacts UK Military Data
British mesh fencing systems maker Zaun discloses LockBit ransomware attack potentially impacting data related to UK military and intelligence sites.
The post Ransomware Attack on Fencing Systems Maker Zaun Impacts UK Military Data appeared first on Se…
Ransomware attacks go beyond just data
65% of organizations confirmed that ransomware is one of the top three threats to their viability, and for 13%, it is the biggest threat, according to a report by Enterprise Strategy Group (ESG) and Keepit. Organizations’ strategies against ranso…
LockBit ransomware gang hit the Commission des services electriques de Montréal (CSEM)
The LockBit ransomware gang claims to have breached the Commission des services electriques de Montréal (CSEM). The LockBit ransomware group continues to be one of the most active extortion gangs in the threat landscape. This week the gang claimed to have hacked the Commission des services electriques de Montréal (CSEM). The Commission des services électriques […]
The post LockBit ransomware gang hit the Commission des services electriques de Montréal (CSEM) appeared first on Security Affairs.
What Is Cloud Workload Protection? Ultimate Guide
Learn how cloud workload protections defend against threats, ensuring data safety and application integrity.
The post What Is Cloud Workload Protection? Ultimate Guide appeared first on eSecurity Planet.
New “Early Warning” System in the U.K. Tips Off Ransomware Targets
British Intelligence has come up with a potentially very effective means to disrupt ransomware attacks, but there seems to still be a few kinks in the system.
Researchers released a free decryptor for the Key Group ransomware
Researchers released a free decryptor for the Key Group ransomware that allows victims to recover their data without paying a ransom. Threat intelligence firm EclecticIQ released a free decryption tool for the Key Group ransomware (aka keygroup777) that allows victims to recover their data without paying a ransom. The Key Group ransomware gang has been […]
The post Researchers released a free decryptor for the Key Group ransomware appeared first on Security Affairs.