ransomware Archives - Page 22 of 41 - Cyber Security Minute

White House urges private sector to enhance their ransomware defenses

Issued by: Help Net Security

In light of the ransomware attacks hitting high-profile targets such as the Colonial Pipeline and JBS, the White House has issued an open letter to private sector companies, urging them to do their part to stymie the threat. The Federal Government is working with partners around the world to disrupt and deter ransomware actors, by…

Vulnerabilities

VMware Urges Customers to Immediately Patch Critical vSphere Vulnerability

Issued by: Security Week

The vulnerability, tracked as CVE-2021-21985, was reported to VMware by Ricter Z of 360 Noah Lab and it has been patched in versions 6.5, 6.7 and 7.0 of vCenter Server. According to VMware, the vulnerability impacts the vSphere Client, specifically the Virtual SAN Health Check plugin, which is enabled by default in vCenter Server even…

Malware & Threats

A Renewed Push to Improve the Nation’s Cybersecurity

Issued by: Security Week

In response to recent cybersecurity incidents such as SolarWinds, Microsoft Exchange, and the Colonial Pipeline ransomware attack, President Biden on May 12, 2021 signed an Executive Order (EO) to improve the nation’s cybersecurity and protect federal government networks. For close observers, this seems to be like Groundhog Day, as past incoming administrations have issued similar…

Software Security

Files on QNAP NAS Devices Encrypted in Qlocker Ransomware Attacks

Issued by: Security Week

The Taiwanese company, which makes both NAS and professional network video recorder (NVR) solutions, has long been urging users to improve the security of their devices. With QNAP NAS devices being targeted by ransomware families known as Qlocker and eCh0raix, the company is now advising users to download and install the latest Malware Remover version…

Software Security

Nine Critical Flaws in FactoryTalk Product Pose Serious Risk to Industrial Firms

Issued by: Security Week

The vulnerabilities were discovered by researchers at industrial cybersecurity firm Claroty and they were addressed by the vendor with the release of AssetCentre v11. Previous versions are impacted. FactoryTalk AssetCentre is designed for securing, managing, tracking, versioning and reporting information related to automation assets across an entire facility. The product is used by many industrial…

Malware & Threats

Financial Sector Remains Most Targeted by Threat Actors: IBM

Issued by: Security Week

Manufacturing and energy became the second and third most targeted industries last year, respectively. Retail and professional services rounded up the top five most targeted sectors, IBM says. In the latest installment of their annual X-Force Threat Intelligence Index, IBM Security also reveals that ransomware was the most popular attack method in 2020, with a…

Vulnerabilities

‘Hades’ Ransomware Hits Big Firms, but Operators Slow to Respond to Victims

Issued by: Security Week

Initially observed in December 2020, the self-named Hades ransomware (a different malware family from the Hades Locker ransomware that emerged in 2016) employs a double-extortion tactic, exfiltrating victim data and threatening to leak it publicly unless the ransom is paid. The adversary appears mainly focused on enterprises, with some of the victims being multi-national organizations…

Malware & Threats

FBI Warns of PYSA Ransomware Attacks on Education Institutions in US, UK

Issued by: Security Week

Last year, authorities in the UK and France also issued alerts for the PYSA ransomware, following attacks on government and other types of organizations. According to the FBI, PYSA attacks have been launched by “unidentified cyber actors” against higher education, K-12 schools and seminaries in a dozen U.S. states, as well as the U.K. The…

Malware & Threats

Microsoft Reports ‘DearCry’ Ransomware Targeting Exchange Servers

Issued by: Dark Reading

Attackers have begun to utilize the recently patched Microsoft Exchange Server vulnerabilities to deploy ransomware onto compromised servers, Microsoft reports. The news emerged late last night. Phillip Misner, a member of Microsoft’s security research team, tweeted about the new ransomware family tracked as Ransom:Win32/DoejoCrypt.A and nicknamed “DearCry,” which is using the Microsoft Exchange vulnerabilities to…

Vulnerabilities

Third French Hospital Hit by Cyberattack

Issued by: Security Week

The 320-bed facility in Oloron-Sainte-Marie near the Pyrenees mountains was hit by the attack on Monday, with screens displaying a demand in English for $50,000 in Bitcoin. Hospital workers have had to revert to working with pens and paper, since digital patient records are not available. The management system, used to monitor medicine stocks and…