Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2020-10-08 15:30:00 |
Healthcare security update: death by ransomware, what\'s next? (lien direct) |
Read more...)
|
Ransomware
Guideline
|
|
|
|
2020-10-05 17:00:00 |
A week in security (September 28 – October 4) (lien direct) |
A roundup of the best cybersecurity stories from September 28 – October 4, including several tricky cases ransomware installed on... coffee makers?
Categories:
A week in security
Tags: a week in securityawisfakefraudmalwarephishphishingscamsecurity roundup
(Read more...)
|
Ransomware
|
|
|
|
2020-10-02 17:00:00 |
VideoBytes: Ransomware gets wasted! (lien direct) |
On today's VideoBytes, we look at how ransomware is on the rise, attacking corporations with malware that not only encrypts files, but also steals it.
Categories:
Ransomware
Tags: Anti-Ransomwareevil corpFOIAgarmingdprmalware monthlyMongoDBransomwareransomware-as-a-servicewastedlockerWindows Cache Manager
(Read more...)
|
Ransomware
Malware
|
|
|
|
2020-10-01 16:56:06 |
Chaos in a cup: When ransomware creeps into your smart coffee maker (lien direct) |
This International Coffee Day, we looked at coffee machines that helped bring down a network of systems. Who would've guessed?
Categories:
Ransomware
Tags: insecure deviceInternet of ThingsIoTIoT privacy concernsIoT security concernssmart coffee machinesmart coffee makersmart percolator
(Read more...)
|
Ransomware
|
|
|
|
2020-07-10 18:10:37 |
Threat spotlight: WastedLocker, customized ransomware (lien direct) |
WastedLocker ransomware, attributed to the Russian Evil Corp gang, is such a targeted threat, you might call it a custom-built ransomware family.
Categories:
Threat spotlight
Tags: evil corpRansom.BinADSransomwarewastedwastedlocker
(Read more...)
|
Threat
Ransomware
|
|
|
|
2020-07-07 17:20:00 |
Mac ThiefQuest malware may not be ransomware after all (lien direct) |
We discovered a new Mac malware, ThiefQuest, that appeared to be ransomware at first glance. However, once we dug in deeper, we found out its true identity-and intention.
Categories:
Mac
Tags: Appledecryptionmacmac antivirusmac malwaremac ransomwaremacOSmalwareransomwarestolen dataThiefQuestviruswiper
(Read more...)
|
Ransomware
Malware
|
|
|
|
2020-06-30 16:09:35 |
New Mac ransomware spreading through piracy (lien direct) |
We analyze a new Mac ransomware that appears to encrypt user files with a bit of a time delay.
Categories:
Mac
Tags: AbletonAbleton LiveencryptFindzipFindzip ransomwareLittle Snitchmacmac malwareMixed In Keyransomwaretime delay
(Read more...)
|
Ransomware
|
|
|
|
2020-06-26 17:24:27 |
The face of tomorrow\'s cybercrime: Deepfake ransomware explained (lien direct) |
Read more...)
|
Ransomware
|
|
|
|
2020-06-15 15:30:00 |
(Déjà vu) A week in security (June 8 – 14) (lien direct) |
A roundup of news and blog posts from the week of June 8 - 14, including the Honda ransomware attack, search hijackers, and what to look for in an RMM platform.
Categories:
A week in security
Tags: Babylon Healthbanking appBraveBrave browsercovid-19data breachEnel ransomwarefacebookfake gift cardhealthcare app data breachHonda ransomwaremanaged service providersMSPparetologicprivacyransomwareRMMRMM platformSnake ransomwareSpeedyPCtwitterwhatsapp
(Read more...)
|
Ransomware
|
|
|
|
2020-06-10 15:30:00 |
MSPs, know what you\'re really looking for in an RMM platform (lien direct) |
Read more...)
|
Ransomware
|
|
|
|
2020-06-10 03:53:20 |
Honda and Enel impacted by cyber attack suspected to be ransomware (lien direct) |
Car manufacturer Honda has been hit by a cyber attack, according to a report published by the BBC, and later confirmed by the company in a tweet. Another similar attack, also disclosed on Twitter, hit Edesur S.A., one of the companies belonging to Enel Argentina which operates in the business of energy distribution in the...
Categories:
Ransomware
Threat analysis
Tags: ekansenelhondaransomwareSnake
(Read more...)
|
Ransomware
|
|
|
|
2020-06-04 15:30:22 |
Sodinokibi ransomware gang auctions off stolen data (lien direct) |
The Sodinokibi ransomware operators have opened an auction site to sell the stolen data of their victims to the highest bidder.
Categories:
Ransomware
Tags: auctionhappy blogransomransomwareSodinokibi
(Read more...)
|
Ransomware
|
|
|
|
2020-05-29 15:00:00 |
Maze: the ransomware that introduced an extra twist (lien direct) |
Maze ransomware attacks featured the first group of cyber-criminals to add the threat of publishing exfiltrated data to the ransomware business model
Categories:
Threat spotlight
Tags: dataFalloutMazepulseransomwareSpelevovpn
(Read more...)
|
Threat
Ransomware
|
|
|
|
2020-05-20 15:15:00 |
10 best practices for MSPs to secure their clients and themselves from ransomware (lien direct) |
For MSPs, securing themselves from ransomware is just as much a practice in securing clients. See how to save data-and money-with these best practices.
Categories:
How-tos
Tags: account managementB2Bbackupbackupsbest MSP practicescredential managementcrisis of credibilityemployee educationinsider threatsmanaged service providersmfaMSPmulti-factor authenticationnetwork segmentationpassword managementpatch managementphishingransomwaresecurity hygienevirtual private networksvpn
(Read more...)
|
Ransomware
|
|
|
|
2020-04-28 17:08:32 |
Threat actors release Troldesh decryption keys (lien direct) |
On GitHub a user called shade-team released hundreds of thousands of Troldesh decryption keys. Can victims of the ransomware safely use them to decrypt their files?
Categories:
Ransomware
Tags: decryption keysno more ransomshade-teamTroldesh
(Read more...)
|
Threat
Ransomware
|
|
|
|
2020-02-20 18:09:03 |
Threat spotlight: RobbinHood ransomware takes the driver\'s seat (lien direct) |
RobbinHood a is a ransomware family that specifically targets organizations using a vulnerable kernel driver to prepare systems for encryption. Learn how to protect against it.
Categories:
Threat spotlight
Tags: .enc_robbinhoodAnti-RansomwarebaltimorebitcoingreenvilleMalwarebytesransomransom noteransomwareransomware rollbackrobbinhoodrobbinhood ransomwarerollback
( |
Threat
Ransomware
|
|
|
|
2020-02-18 16:40:45 |
A week in security (February 10 – 16) (lien direct) |
A roundup of the previous week's security news, including Malwarebytes' release of the 2020 State of Malware Report, online dating woes, Emotet infection vectors, ransomware attacks, and more.
Categories:
A week in security
Tags: accusoftCISOcoronavirusDellemotetEquifaxgigabytegridworkshelixHollywoodnude photosonline datingrobbinhoodstate of malware reportxHelper
(Read more...)
|
Ransomware
Malware
|
Equifax
|
|
|
2020-02-11 08:01:00 |
Malwarebytes Labs releases 2020 State of Malware Report (lien direct) |
The 2020 State of Malware Report reveals how cybercriminals upped the ante on businesses, Mac threats outpaced PCs, and ransomware continued its targeted, deadly assault with new families in 2019. Learn all this and more in the full report, linked in our blog.
Categories:
Reports
Tags: 2020 state of malware reportadwareAndroidandroid malwareData privacyemotethacktoolsiOSmacmacOSransomwareryukSodinokibiState of Malwarestate of malware reporttrickbotTrojansweb threatswindows
(Read more...)
|
Ransomware
Malware
|
|
|
|
2020-01-27 17:17:14 |
A week in security (January 20 – 26) (lien direct) |
A roundup of the previous week's most notable security stories and events, including tech support scams, deepfakes, and the latest ransomware attack in Florida.
Categories:
A week in security
Tags: Appleawisblog recapbreachfacebook phishingfake job listingsGooglehiring scamJhoneRATNest IOTPupyRATransomwareratremote access Trojansextortiontech support scamTHSuiteTinderweekly blog roundup
(Read more...)
|
Ransomware
|
|
|
|
2020-01-24 20:11:10 |
Tampa Bay Times hit with Ryuk ransomware attack (lien direct) |
Florida newspaper The Tampa Bay Times suffered a Ryuk ransomware attack Thursday, making it the latest major victim of the notorious ransomware family that continues to rise in popularity.
Categories:
Ransomware
Tags: Chicago TribuneCrowdStrikeDCH Health SystememotetImperial CountyImperial County CaliforniaLake CityLake City FloridaLos Angeles TimesProPublicaransomRansom.RyukransomwareryukRyuk ransomwareTampa Bay Timestribune publishingtrickbotTrojan.TrickBotUS Coast Guard
(Read more...)
|
Ransomware
|
|
|
|
2020-01-13 16:29:59 |
A week in security (January 6 – 12) (lien direct) |
A cybersecurity news roundup from January 6–12, with a look at Phobos ransomware and a discovery of pre-installed malware on government-funded phones.
Categories:
A week in security
Tags: CESCES 2020Consumer Electronics Showeducation cybersecurityGooglePhobosPhobos ransomwarepre-installed mobile malwareransomwareretail industryRingsearch industrytiktok
(Read more...)
|
Ransomware
Malware
|
|
|
|
2020-01-10 18:04:44 |
Threat spotlight: Phobos ransomware lives up to its name (lien direct) |
Phobos, which many believe was named after the Greek god of fear, isn't as widespread as it was before nor is it more novel than your average ransomware. Yet, it remains a threat to consumers and businesses alike. We dive into Phobos ransomware and show users how to face their fears and protect against it.
Categories:
Threat spotlight
Tags: brute forcecovewarecrysiscrysis ransomwaredharmaDharma ransomwaredisorganised crimemfaMulti-Factor AuthorizationPhobosPhobos NextGenPhobos NotDharmaPhobos ransomwareraasransomwareRansomware as a Servicerdpremote desktop protocolServer Message BlockSMBSodinokibivirtual private networksvpn
(Read more...)
|
Threat
Ransomware
|
|
|
|
2019-12-12 22:33:53 |
Threat spotlight: the curious case of Ryuk ransomware (lien direct) |
From comic book death god to ransomware baddie, Ryuk ransomware remains a mainstay when organizations find themselves in a crippling malware pinch. We look at Ryuk's origins, attack methods, and how to protect against this ever-present threat.
Categories:
Threat spotlight
Tags: AESaverage ransom amountBitPaymerBitPaymer ransomwareCryptoTechDeath NoteemotetFar Eastern International BankFEIBGabriela NicolaogandcrabHermesHermes 2.1Luciano Martinspseudo-ransomwareRansom.Ryukrdpremote desktop protocolRSARussian threat actorsryukRyuk ransomwareShinigami's revenge: the long tail of the Ryuk ransomwaretribune publishingtrickbotWake-on-LANWizard SpiderWoL
(Read more...)
|
Threat
Ransomware
Malware
|
|
|
|
2019-10-14 16:00:00 |
Europol: Ransomware remains top threat in IOCTA report (lien direct) |
The European Union Agency for Law Enforcement Cooperation, or Europol, just released its annual Internet Organized Crime Threat Assessment (IOCTA) report. We highlight their key findings and remind readers how to better protect themselves.
Categories:
Awareness
Tags: becBusiness Email Compromisechild sexual exploitationcseddoseuropolfraudinternet organized crime threat assessmentioctaphishingransomwarespear phishing
(Read more...)
|
Threat
Ransomware
|
|
|
|
2019-08-26 15:38:03 |
A week in security (August 19 – 25) (lien direct) |
A roundup of the latest cybersecurity news for the week of August 19–25, including Magecart attacks on poker software, a new Bluetooth vulnerability, continuing ransomware attacks on US cities, Bitcoin sextortion, and a look back at one researcher's DEF CON experience.
Categories:
A week in security
Tags: AhMythAPTawisBitcoin sextortionBolik banking TrojancrypominingDEF CON 27facebookfacebook hoaxfortniteGooglehong kongInstagram hoaxKey Negotiation of BluetoothKNOB attackMagecartmisinformationNordVPNransomwarerecapSecurity Service of UkraineSodinokibispywareSyrk ransomwaretwitterValve Corporationweek in securityweekly blog roundupyoutubeYuzhnoukrainsk
(Read more...)
|
Ransomware
|
|
|
|
2019-08-23 15:00:05 |
Ransomware continues assault against cities and businesses (lien direct) |
We take a look at the current chaos faced by local governments across the US, as ransomware continues to snap at its cities' heels.
Categories:
Ransomware
Tags: attackbackupcritical infrastructureemotetFloridalocal government organisationlocked outlouisianaransomransomwarerobinhoodryukRyuk ransomwaresamsam ransomwaretexastrickbot
(Read more...)
|
Ransomware
|
|
|
|
2019-08-14 13:00:00 |
Trojans, ransomware dominate 2018–2019 education threat landscape (lien direct) |
Trojans such as Emotet and TrickBot were the top threat for the education sector in the 2018–2019 school year. What threats will the new school year bring?
Categories:
Trojans
Tags: cyberthreatseducation cybersecurityemotetransomwareryukRyuk ransomwaretrickbotTrojans
(Read more...)
|
Threat
Ransomware
|
|
|
|
2019-08-08 14:00:00 |
Labs quarterly report finds ransomware\'s gone rampant against businesses (lien direct) |
Read more...)
|
Threat
Ransomware
|
|
|
|
2019-07-24 18:09:03 |
A deep dive into Phobos ransomware (lien direct) |
We take an in-depth look into Phobos ransomware which threat actors distribute via RDP and look at similarities with Dharma (AKA CrySis) ransomware.
Categories:
Threat analysis
Tags: crysisdharmaPhobosransomware
(Read more...)
|
Threat
Ransomware
|
|
|
|
2019-07-18 17:58:02 |
Threat Spotlight: Sodinokibi ransomware attempts to fill GandCrab void (lien direct) |
There's a new ransomware-as-a-service (RaaS) in town, and it can twist tongues for giggles as much as twist organizations' arms for cash. Get to know the Sodinokibi ransomware, including how to protect against this fledgling threat.
Categories:
Threat spotlight
Tags: 177a571d7c6a6e4592c60a78b574fe0ebf9359046c4f5c24de0a9de28bbabd14caasCisco Taloscrime-as-a-serviceCVE-2018-8453CVE-2019-2725e713658b666ff04c9863ebecb458f174FruitArmor APTgandcrabHeaven's Gatemalvertisingmanaged service providersmsp hackOracle WebLogic vulnerabilityraasRansom.SodinokibiransomwareRansomware as a Servicerevilsalsa20shadow copysodinSodinokibivolume snapshot servicevssWin32k vulnerabilityzero-day vulnerability
(Read more...)
|
Threat
Ransomware
|
|
|
|
2019-06-20 17:20:03 |
Radiohead\'s ransom response shows novel approach for ransomware victims (lien direct) |
|
Ransomware
|
|
|
|
2019-06-12 16:03:02 |
MegaCortex continues trend of targeted ransomware attacks (lien direct) |
In this threat spotlight, we feature MegaCortex, another custom ransomware designed for targeted attacks on enterprises. Will this Matrix-inspired malware strike again?
Categories:
Threat spotlight
Tags: aes128ctrbusiness securitymegacortexransomransom.megacortexransomwareransomware attacktargeted ransomware
(Read more...)
|
Threat
Ransomware
Malware
|
|
|
|
2019-06-03 17:09:05 |
A week in security (May 27 – June 2) (lien direct) |
A roundup of security news from May 27–June 2, including a look at 2019 ransomware outbreaks in the Unites States, ATM fraud, NIST's privacy framework, more legal problems for Google and Facebook, and more.
Categories:
A week in security
Tags: a week in securityamazonatm attacksatm fraudbaltimorechromeCity of BaltimoreDepartment of JusticeDoomFederal Trade CommissionG Suitegandcrabgandcrab ransomwaregmailGoogleGoogle Chromehidden beeJustice DepartmentNISTprivacy frameworkprotonmailransomwareweek in securityyoutube
(Read more...)
|
Ransomware
|
|
|
|
2019-05-31 15:00:00 |
Ransomware isn\'t just a big city problem (lien direct) |
|
Ransomware
|
|
|
|
2019-05-20 15:57:02 |
A week in security (May 13 – 19) (lien direct) |
A roundup of security news from May 13–19, including ransomware attacks on the upswing, website hacking, pseudo-VPNs, bloatware, and more.
Categories:
Security world
Week in security
Tags: Androidbloatwarebreachescrysis ransomwareDDos attackdharmahackinghealthcare cybersecuritymdsMeltdownmicrosoftransomwareserver vulnerabilitiesSpectretyposquattingvpnvulnerabilitieswhatsapp
(Read more...)
|
Ransomware
|
|
|
|
2019-05-15 16:02:01 |
Threat spotlight: CrySIS, aka Dharma ransomware, causing a crisis for businesses (lien direct) |
CrySIS, aka Dharma, is a ransomware family making waves over the last two months, often being used in targeted attacks through RDP access. What other tricks are up its sleeve?
Categories:
Malware
Threat analysis
Tags: Anti-Ransomwarecrysisdharmamalwareransomransomwarerdprdp access
(Read more...)
|
Threat
Ransomware
|
|
★★★
|
|
2019-05-13 15:55:04 |
A week in security (May 6 – 12) (lien direct) |
A roundup of security news from May 6–12, including breaches, privacy, financials, takedowns, and new ransomware tactics.
Categories:
Security world
Week in security
Tags: 5Gbaltimoreconfluencedata breachdharmaelectricfishfinancialfintechGooglemozillaprivacyseep dot webwolters kluwer
(Read more...)
|
Ransomware
|
|
|
|
2019-03-06 16:00:00 |
Spotlight on Troldesh ransomware, aka \'Shade\' (lien direct) |
Troldesh is ransomware that relies heavily on user interaction. Nevertheless, a recent spike in detections shows it's been successful against businesses in the first few months of 2019.
Categories:
Malware
Threat analysis
Tags: decryptordecryptorsransom.troldeshransomwareransomware remediationshadethreat spotlightTroldesh
(Read more...)
|
Ransomware
|
|
|
|
2019-01-25 18:00:00 |
Sly criminals package ransomware with malicious ransom note (lien direct) |
Ransomware is not dead. It's changing-and we need to be ready for them.
Categories:
Cybercrime
Social engineering
Tags: crytekkcrytekk ransomwarehybrid ransomwarepaypal phishingphishing
(Read more...)
|
Ransomware
|
|
|
|
2019-01-08 19:49:04 |
Ryuk ransomware attacks businesses over the holidays (lien direct) |
Over the holiday, a little-known ransomware family called Ryuk caused serious damage to numerous organizations. The attacks leave a lot of questions unanswered. What do we know so far?
Categories:
Cybercrime
Malware
Tags: attributionBitPaymer ransomwareChristmasdata resolutiondataresolution.netemotetexploitHermesholidayLazarusmalicious office documentsmalspammalwarebytes anti-exploitmalwarebytes anti-ransomwareNorth KoreaOnslow water and sewer authorityOWASAprotectionransomransomwareryukstatstipstribune publishingtrickbot
(Read more...)
|
Ransomware
|
APT 38
|
|
|
2019-01-04 18:15:02 |
Vidar and GandCrab: stealer and ransomware combo observed in the wild (lien direct) |
Threat actors combine new stealer Vidar and GandCrab ransomware in one-two punch.
Categories:
Criminals
Threat analysis
Tags: Arkeiexploitexploit kitFalloutgandcrabransomwareVidar
(Read more...)
|
Ransomware
|
|
|
|
2018-12-27 17:34:05 |
Using the blockchain to create secure backups (lien direct) |
Some of the properties we would like to see in our backups have blockchain technology written all over them. Should organizations consider blockchain for creating secure, recent backups-especially after a ransomware attack?
Categories:
Business
Security world
Technology
Tags: backupsblockchainmajority attacksybil
(Read more...)
|
Ransomware
|
|
|
|
2018-12-14 16:00:00 |
How threat actors are using SMB vulnerabilities (lien direct) |
SMB vulnerabilities have been so successful for criminals that they've been used in some of the most devastating ransomware and Trojan attacks of the last two years. Learn how they work and how your organization can protect against them.
Categories:
101
Business
Tags: EternalBlueEternalChampionEternalRomanceexploitsNSA toolsShadowBrokersSMB vulnerabilitiesvulnerabilities
(Read more...)
|
Threat
Ransomware
|
|
|
|
2018-11-06 18:05:01 |
Compromising vital infrastructure: transport and logistics (lien direct) |
Transport and logistics are vital infrastructure, because we need them to deliver our daily necessities, but who is responsible for protecting them?
Categories:
Business
Cybercrime
Tags: cyberattackshackinginfrastructurelogisticsNotPetyaphishingprevent ransomware attacksprotectionransomwaretransportWannaCry
(Read more...)
|
Ransomware
|
NotPetya
Wannacry
|
|
|
2018-08-15 16:00:00 |
Black Hat USA 2018: ransomware is still the star (lien direct) |
A recap of the Malwarebytes' team experience at the Black Hat conference in Las Vegas, including top trends, topics, and interesting discussions.
Categories:
Malwarebytes news
Tags: black hatblackhatconferenceVegas
(Read more...)
|
Ransomware
|
|
|
|
2018-08-10 16:13:01 |
How to protect your RDP access from ransomware attacks (lien direct) |
Ransomware distributors have started using RDP to gain access to business networks. Do you have your remote desktops under control?
Categories:
Business
Security world
Tags: businessransomwarerdpremote accessremote desktop protocol
(Read more...)
|
Ransomware
|
|
|
|
2018-07-16 17:00:01 |
Magniber ransomware improves, expands within Asia (lien direct) |
After a controlled delivery focused on South Korea, an upgraded Magniber ransomware is now affecting other Asian countries.
Categories:
Exploits
Threat analysis
Tags: asiaEKmagniberMagnigateMagnitudeMalaysiaSouth KoreaTaiwan
(Read more...)
|
Ransomware
|
|
|