3 things the Kaseya attack can teach us about ransomware recovery
Some lessons on dealing with ransomware recovery, thanks to the admirable transparency of a Dutch MSP impacted by the REvil attack on Kaseya.
Only rarely do companies allow us...
CISA Alerts on Active Exploitation of Flaws in Fortinet, Ivanti, and Nice Products
Mar 26, 2024NewsroomCyber Attack / Vulnerability
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday placed three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of...
Network Threats: A Step-by-Step Attack Demonstration
Follow this real-life network attack simulation, covering 6 steps from Initial Access to Data Exfiltration. See how attackers remain undetected with the simplest tools and why you need multiple...
Raspberry Robin Returns: New Malware Campaign Spreading Through WSF Files
Apr 10, 2024NewsroomCyber Crime / Malvertising
Cybersecurity researchers have discovered a new Raspberry Robin campaign wave that propagates the malware through malicious Windows Script Files (WSFs) since March 2024.
"Historically, Raspberry...
QNAP update stops Deadbolt ransomware, annoys some users, starts debate
After several warnings to their user and thousands of victims, QNAP pushed out a forced update to their NAS devices.
Earlier this week (25 January, 2022) news broke that...
Night Sky: the new corporate ransomware demanding a sky high ransom
Night Sky is a fairly new ransomware strain that organizations must keep an eye out for.
There’s a new ransomware in town—isn’t there always?—and it’s, unsurprisingly, after corporation-sized businesses.
It’s...
Hive ransomware impacts California non-profit health organisation
We look at a developing story where Hive ransomware has heavily impacted a non-profit healthcare organisation.
Ransomware authors are once again targeting health services, holding important files to ransom...
Massive Phishing Campaign Strikes Latin America: Venom RAT Targeting Multiple Sectors
Apr 02, 2024NewsroomMalvertising / Threat Intelligence
The threat actor known as TA558 has been attributed to a new massive phishing campaign that targets a wide range of sectors in Latin...
TA547 Phishing Attack Hits German Firms with Rhadamanthys Stealer
Apr 11, 2024NewsroomEndpoint Security / Ransomware
A threat actor tracked as TA547 has targeted dozens of German organizations with an information stealer called Rhadamanthys as part of an invoice-themed phishing...
AvosLocker ransomware uses Microsoft Exchange Server vulnerabilities, says FBI
The AvosLocker ransomware as a service affiliates have been found to target multiple critical infrastructure sectors, using Exchange Server vulnerabilities.
The FBI has issued an advisory about the AvosLocker...
