What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2017-10-26 23:03:40 | NHS \'could have prevented\' WannaCry ransomware attack (lien direct) | Recommendations which could have stopped the WannaCry ransomware attack were ignored, a report says. | Wannacry | ||
 |
2017-10-26 14:43:41 | Following The Bad Rabbit (lien direct) | On October 24th, media outlets reported on an outbreak of ransomware affecting various organizations in Eastern Europe, mainly in Russia and Ukraine. Identified as “Bad Rabbit”, initial reports about the ransomware drew comparisons with the WannaCry and NotPetya (EternalPetya) attacks from earlier this year. Though F-Secure hasn’t yet received any reports of infections from our […] |
NotPetya Wannacry | ||
 |
2017-10-25 11:45:52 | Threat Intelligence: A Tear-Free Solution to Help SOC Analysis Prepare for the Next WannaCry (lien direct) | An effective threat intelligence solution enables analysts to address, track and investigate advanced attacks such as WannaCry ransomware. | Wannacry | ||
 |
2017-10-25 05:30:16 | Bad Rabbit malware raises fears of third global ransomware attack (lien direct) | A ransomware attack that has commonalities with WannaCry NotPeya is reportedly hitting organisations in Russia, Ukraine, Turkey, Bulgaria and Germany | Wannacry | ||
 |
2017-10-25 01:36:57 | Le ransomware Bad Rabbit crée le désordre en Russie et Ukraine (lien direct) | Le malware a infecté plus de 200 organisations. Il a été diffusé par un site piégé en se fait passer pour programme d'installation d'Adobe Flash. Mais son mode de propagation est moins virulent que ses prédécesseurs WannaCry ou NotPetya.  |
NotPetya Wannacry | ||
 |
2017-10-19 12:01:56 | A Look at Locky Ransomware\'s Recent Spam Activities (lien direct) | Ransomware has been one of the most prevalent, prolific, and pervasive threats in the 2017 threat landscape, with financial losses among enterprises and end users now likely to have reached billions of dollars. Locky ransomware, in particular, has come a long way since first emerging in early 2016. Despite the number of times it apparently spent in hiatus, Locky remains a relevant and credible threat given its impact on end users and especially businesses. Our detections show that it's making another comeback with new campaigns. A closer look at the file-encrypting malware's activities reveals a constant: the use of spam. While they remain a major entry point for ransomware, Locky appears to be concentrating its distribution through large-scale spam campaigns of late, regardless of the variants released by its operators/developers. Post from: Trendlabs Security Intelligence Blog - by Trend Micro A Look at Locky Ransomware's Recent Spam Activities | Wannacry | ||
 |
2017-10-16 22:32:36 | Taiwan Heist: Lazarus Tools and Ransomware (lien direct) | Written by Sergei Shevchenko, Hirman Muhammad bin Abu Bakar, and James WongBACKGROUNDReports emerged just over a week ago of a new cyber-enabled bank heist in Asia. Attackers targeting Far Eastern International Bank (FEIB), a commercial firm in Taiwan, moved funds from its accounts to multiple overseas beneficiaries. In a story which reminds us of the Bangladesh Bank case – the culprits had compromised the bank's system connected to the SWIFT network and used this to perform the transfers. In recent days, various malware samples have been uploaded to malware repositories which appear to originate from the intrusion. These include both known Lazarus group tools, as well as a rare ransomware variant called 'Hermes' which may have been used as a distraction or cover-up for the security team whilst the heist was occurring. The timeline below provides an overview of the key events: 01 October 2017  Malware compiled containing admin credentials for the FEIB network. 03 October 2017  Transfers using MT103 messages were sent from FEIB to Cambodia, the US and Sri Lanka. Messages to cover the funds for the payments were incorrectly created and sent. 03 October 2017  Breach discovered and ransomware uploaded to online malware repository site. 04 October 2017 Individual in Sri Lanka cashes out a reported Rs30m (~$195,000). 06 October 2017  |
Medical | Wannacry APT 38 | |
 |
2017-10-16 09:29:35 | North Korea behind WannaCry says Microsoft head (lien direct) | >President of Microsoft, Brad Smith, has said that “all observers in the know” believe North Korea were behind the WannaCry ransomware that temporarily bought the NHS to a standstill earlier this year. Read Full Story ORIGINAL SOURCE: The Independent | Wannacry | ||
|
2017-10-10 12:01:34 | WannaCry Ransomware Sold in the Middle Eastern and North African Underground (lien direct) | For $50, one could purportedly get a lifetime license to upgradeable variants of WannaCry. We saw this advertisement in an Arabic-speaking underground forum on May 14, two days after WannaCry's outbreak. Indeed, a threat that left a trail of significant damage in its wake was objectified into a commodity, and even a starting point for others to launch their own cybercriminal businesses. WannaCry's relatively low price also reflects another unique aspect of the Middle Eastern and North African underground: a sense of brotherhood. Unlike marketplaces in Russia and North America, for instance, where its players aim to make a profit, the Middle East and North Africa's underground scene is an ironic juncture where culture, ideology, and cybercrime meet. Post from: Trendlabs Security Intelligence Blog - by Trend Micro WannaCry Ransomware Sold in the Middle Eastern and North African Underground | Wannacry | ||
 |
2017-10-04 11:24:26 | Rapport WatchGuard – Les vols d\'identités ont un succès croissant auprès des cybercriminels (lien direct) |  Le rapport WatchGuard sur la Sécurité Internet du second trimestre 2017 révèle que 47% de tous les malwares sont nouveaux ou "zero day", et fournit une analyse détaillée de WannaCry. |
Wannacry | ||
 |
2017-10-01 13:26:03 | WannaCrypt: An Overview of 2017\'s Biggest Cybersecurity Threat (lien direct) | This past May, a malicious software attack known as WannaCrypt (or WannaCry, depending on your source) hit the computer systems at major organizations and businesses around the globe. WannaCrypt is a ransomware attack. Once it infects a machine or computer system, it encrypts all the data hosted on those machines. (Hence the name WannaCrypt.) Once the files are encrypted, the attack prompts the owner of the machine or ... Read more | Wannacry | ||
|
2017-09-28 06:15:55 | WannaCry an example of pseudo-ransomware, says McAfee (lien direct) | The global WannaCry and NotPetya attacks were both examples of pseudo-ransomware, according to McAfee researchers | NotPetya Wannacry | ||
|
2017-09-27 11:00:42 | What Do Recent Attacks Mean for OT Network Security? (lien direct) | Cyberattacks such as WannaCry, NotPetya and Industroyer wreaked havoc on organizations, but they provided lessons for security your OT network. | NotPetya Wannacry | ||
 |
2017-09-27 10:35:33 | Another Banking Trojan Adds Support for NSA\'s EternalBlue Exploit (lien direct) | A third banking trojan has added support for EternalBlue, an exploit supposedly created by the NSA, leaked online by the Shadow Brokers, and the main driving force behind the WannaCry and NotPetya ransomware outbreaks. [...] | NotPetya Wannacry | ||
|
2017-09-26 09:01:25 | McAfee Labs Report sees cyberattacks target healthcare and social media users (lien direct) | McAfee Inc. today released its McAfee Labs Threats Report: September 2017, which examines the rise of script-based malware, suggests five proven threat hunting best practices, provides an analysis of the recent WannaCry and NotPetya ransomware attacks, assesses reported attacks across industries, and reveals growth trends in malware, ransomware, mobile malware, and other threats in Q2 ... | NotPetya Wannacry | ★★ | |
 |
2017-09-26 04:01:04 | McAfee Labs Threats Report Explores WannaCry/Petya, Threat Hunting, Script-Based Malware (lien direct) | 
Today we published the McAfee Labs Threats Report: September 2017. This quarter's report shows off a new design. We hope you will find it attractive as well as informative.
|
Wannacry | ||
 |
2017-09-25 03:00:24 | Batten Down the Patches (lien direct) | In May, we witnessed the infamous WannaCry malware attack and how it devastated the NHS in the UK, forcing hospitals to postpone operations whilst dealing with the attack. We all know how and why it happened, but looking back, there was something that was missed by many people when explaining how it propagated so quickly. Following […]… Read More | Wannacry | ||
 |
2017-09-23 15:50:29 | Retefe banking Trojan leverages EternalBlue exploit to infect Swiss users (lien direct) | Cyber criminals behind the Retefe banking Trojan have improved it by adding a new component that uses the NSA exploit EternalBlue. ETERNALBLUE is the alleged NSA exploit that made the headlines with DOUBLEPULSAR in the WannaCry attack and NotPetya massive attacks. ETERNALBLUE targets the SMBv1 protocol and it has become widely adopted in the community of malware developers. Investigations on WannaCry, for […] | NotPetya Wannacry | ||
 |
2017-09-22 18:02:28 | EternalBlue Exploit Used in Retefe Banking Trojan Campaign (lien direct) | Banking Trojan Retefe is adopting new WannaCry tricks, adding an EternalBlue module to propagate the malware. | Wannacry | ||
|
2017-09-07 13:00:31 | Security Specialists Discuss Identity and Access Management in the Age of Ransomware (lien direct) | Security teams should follow identity and access management (IAM) best practices to avoid widespread ransomware attacks such as WannaCry and NotPetya. | NotPetya Wannacry | ||
 |
2017-09-05 10:50:03 | Who Is Marcus Hutchins? (lien direct) | In early August 2017, FBI agents in Las Vegas arrested 23-year-old U.K. resident Marcus Hutchins on suspicion of authoring and/or selling “Kronos,†a strain of malware designed to steal online banking credentials. Hutchins was virtually unknown to most in the security community until May 2017, when a British newspaper revealed him as the “accidental hero†who inadvertently halted the global spread of WannaCry, a ransomware contagion that had taken the world by storm just days before. Relatively few knew it before his arrest, but Hutchins for many years authored the popular cybersecurity blog MalwareTech. When this fact became more widely known - combined with his hero status for halting Wannacry - a great many MalwareTech readers quickly leapt to his defense to denounce his arrest. They reasoned that the government was overstepping on flimsy evidence, noting that Hutchins has worked tirelessly to expose cybercriminals and their malicious tools. To date, some 226 supporters have donated more than $14,000 to his defense fund. At first, I did not believe the charges against Hutchins would hold up under scrutiny. But as I began to dig deeper into the history tied to dozens of hacker forum pseudonyms, email addresses and domains he apparently used over the past decade, a very different picture began to emerge. In this post, I will attempt to describe and illustrate more than three weeks' worth of connecting the dots from what appear to be Hutchins' earliest hacker forum accounts to his real-life identity. The clues suggest that Hutchins began developing and selling malware in his mid-teens - only to later develop a change of heart and earnestly endeavor to leave that part of his life squarely in the rearview mirror. | Wannacry | ||
|
2017-09-05 09:43:19 | Almost half of Brits think Government should pay when public services are held to ransom by hackers, reveals Top10VPN.com (lien direct) | With 47 NHS organisations recently held to ransom by hackers using WannaCry, Top10VPN.com can reveal that almost half (48%) of Britons believe that the Government should pay up when public services are under threat. In fact, despite the spread of WannaCry being quickly halted, this number jumps to nearly three quarters (75%) when looking at ... | Wannacry | ||
|
2017-09-01 09:36:08 | (Déjà vu) Does AI make you WannaCry? (lien direct) | Almost every day we see or hear about major cyber-security threats and software issues that have serious repercussions on the daily running of society. The recent WannaCry ransomware attack brought the NHS to its knees in May and rendered the digital capability of the NHS useless. Shortly after this, a system collapse, suggested to have ... | Wannacry | ||
 |
2017-08-30 13:00:55 | Layered protection is a must. Here\'s why. (lien direct) | Cyber attacks are advancing in their sophistication. Take WannaCry – once it makes a single entry, its ability to spread throughout the organization and evade protection layers infected hundreds of thousands of computers. These advances make it clear that there's no singular point solution that can act as a “magic bulletâ€. Companies have been approaching […] | Wannacry | ||
 |
2017-08-30 13:00:03 | Businesses most at risk from new breed of ransomware (lien direct) | The ransomware landscape has shifted dramatically in 2017 and organizations bore the brunt of the damage caused by new, self-propagating threats such as WannaCry and Petya. | Wannacry | ||
 |
2017-08-30 09:19:09 | NBlog August 30 - information risk assessment (reprise) (lien direct) |  On ISO27k Forum this morning, an FAQ made yet another appearance. SR asked:"I am planning to do risk assessment based on Process/Business based. Kindly share if you have any templates and also suggest me how it can be done."Bhushan Kaluvakolan responded first by proposing a risk assessment method based on threats and vulnerabilities (and impacts, I guess), a classical information-security-centric approach that I've used many times. Fair enough.I followed up by proposing an alternative (and perhaps complementary) business-centric approach that I've brought up previously both on the Forum and here on NBlog:Consider the kinds of incidents and scenarios that might affect the process, both directly and indirectly. Especially if the process is already operating, check for any incident reports, review/audit comments, known issues, management concerns, expert opinions etc., and/or run a risk workshop with a range of business people and specialists to come up with a bunch of things – I call them 'information risks'. This is a creative, lateral thinking process – brainstorming. Focus on the information, as much as possible, especially information that is plainly valuable/essential for the business. If necessary, remind the experts that this is a business situation, a genuine organizational concern that needs pragmatic answers, not some academic exercise in precision.Review each of those information risks in turn and try to relate/group them where applicable. Some of them will be more or less severe variants on a common theme (e.g. an upstream supply chain incident can range from mild e.g. minor delays and quality issues on non-critical supplies, to severe e.g. sudden/unanticipated total failure of one or more key suppliers due to some catastrophe, such as the Japanese tsunami). Others will be quite different in nature (e.g. various problems with individual employees, IT systems etc.). A neat way to do this is to write each risk on a separate sticky note, then stick them on a white board and briefly explain them, then move them into related/different groups of various sizes and shapes. |
Wannacry | ||
|
2017-08-30 03:00:17 | One in 10 UK Companies Lack an Incident Response Plan, Says Survey (lien direct) | The damage wrought by the WannaCry and NotPetya malware outbreaks highlights the importance of organizations taking steps to strengthen their digital security defenses. But in the shadow of such high-profile attacks, the state of organizations’ security postures remains unclear. Do most companies understand the importance of their information and data assets, for example, and do […]… Read More | NotPetya Wannacry | ||
 |
2017-08-29 23:45:50 | Does AI make You WannaCry? (lien direct) | The ISBuzz Post: This Post Does AI make You WannaCry? | Wannacry | ||
|
2017-08-28 12:30:20 | Android Mobile Ransomware: Bigger, Badder, Better? (lien direct) | By Lorin Wu (Mobile Threat Analyst) The mobile threat landscape isn't just rife with information stealers and rooting malware. There's also mobile ransomware. While it seems they're not as mature as their desktop counterparts, what with the likes of WannaCry and Petya, the increasing usage of mobile devices, particularly by businesses, will naturally draw more... Post from: Trendlabs Security Intelligence Blog - by Trend Micro Android Mobile Ransomware: Bigger, Badder, Better? | Wannacry | ||
|
2017-08-28 11:00:17 | Top Take Away From WannaCry And NotPetya Attacks – Don\'t Forget The Security Fundamentals (lien direct) | The ISBuzz Post: This Post Top Take Away From WannaCry And NotPetya Attacks – Don't Forget The Security Fundamentals | NotPetya Wannacry | ||
 |
2017-08-25 14:04:57 | Les services secrets britanniques savaient que Marcus Hutchins allait être arrêté par le FBI (lien direct) | L’internaute qui a permis de bloquer l’attaque Wannacry, arrêté début août par le FBI, était dans le... Cet article Les services secrets britanniques savaient que Marcus Hutchins allait être arrêté par le FBI est diffusé par Data Security Breach. | Wannacry | ||
 |
2017-08-25 01:53:36 | Easy-to-Use Apps Allow Anyone to Create Android Ransomware Within Seconds (lien direct) | "Ransomware" threat is on the rise, and cyber criminals are making millions of dollars by victimizing as many people as they can-with WannaCry, NotPetya and LeakerLocker being the ransomware threats that made headlines recently.
What's BAD? Hacker even started selling ransomware-as-a-service (RaaS) kits in an attempt to spread this creepy threat more easily, so that even a non-tech user can
|
NotPetya Wannacry | ||
|
2017-08-23 09:33:11 | Positive Technologies Research Shows Increasing Popularity of “Rent-a-Trojan†Attacks (lien direct) | According to Positive Technologies’ statistics, 67 percent of attacks were performed for direct financial gain. Over half of attacks were non-targeted and primarily relied on malware to spread. The epidemic of WannaCry (WanaCypt0r, WCry) ransomware showed that even vigilant users, who don’t open suspicious messages or links, can still fall victim. Intel data indicates that ... | Wannacry | ★★ | |
 |
2017-08-21 12:51:46 | Code Linked to MalwareTech and Kronos Published in 2009 (lien direct) | A piece of code linked to both the British researcher Marcus Hutchins, known online as MalwareTech, and the banking Trojan named Kronos was first published in 2009. Hutchins became famous and was named a “hero†after he helped stop the WannaCry ransomware attack by registering a domain that acted as a kill switch for the malware. | Wannacry | ||
 |
2017-08-21 12:05:51 | GCHQ knew FBI was planning to arrest WannaCry\'s \'accidental hero\' before he travelled to the USA (lien direct) |  The US authorities saved themselves an awful lot of paperwork and legal expense arresting their suspect on their own soil rather than trying to extradite him from the UK.
|
Wannacry | ||
|
2017-08-21 05:15:01 | GCHQ knew WannaCry hero risked arrests by travelling to the US (lien direct) | UK intelligence officials were reportedly aware that security researcher Marcus Hutchins risked arrest by travelling to the US to attend a series of cyber security conferences | Wannacry | ||
|
2017-08-18 16:43:40 | Patching Against the Next WannaCry Vulnerability (CVE-2017-8620) (lien direct) | This month's Microsoft patch updates include one particular vulnerability that is raising concerns: CVE-2017-8620, which affects all versions of Windows from 7 onwards. Microsoft explained, "in an enterprise scenario, a remote unauthenticated attacker could remotely trigger the vulnerability through an SMB connection and then take control of a target computer." | Wannacry | ||
 |
2017-08-18 15:14:29 | Inside the Kronos malware – part 1 (lien direct) |
The first part of this research looks at the tricks used by the Kronos banking malware.
Categories:
Cybercrime
Malware
Tags: bankerkronosmalwaremalwaretechransomwareWannaCry
(Read more...)
|
Wannacry | ||
|
2017-08-18 01:00:00 | Ransomware Hits LG Self-Service Kiosks Across South Korea, Possibly WannaCry (lien direct) | Representatives for LG South Korea said on Wednesday that a mysterious ransomware strain has infected self-servicing kiosks at various service centers across the country. [...] | Wannacry | ||
 |
2017-08-17 18:22:09 | Report: GOP Border Wish List includes Drones, DNA & Voice Scans (lien direct) | Enlarge / A U.S. Customs and Border Protection officer checks identifications as people cross into the United States from Mexico on September 23, 2016 in San Ysidro, California. (credit: John Moore / Getty Images News) If a new Senate Republican border security bill is passed as currently drafted, it would dramatically increase the amount of...Read the whole entry... _!fbztxtlnk!_ https://feeds.feedblitz.com/~/437981858/0/thesecurityledger -->»Related StoriesHero WannaCry Researcher Charged over Links to Kronos TrojanSecurity Ledger Voted Top Infosec PodcastOSINT University: are Colleges and Universities protecting Student Data? | Wannacry | ||
|
2017-08-17 09:26:03 | 200 accounts \'locked\': In Delhi\'s first WannaCry attack, publishing firm hit (lien direct) | After the WannaCry ransomware cyber attack spread like wildfire and paralysed computer systems across the world, isolated incidents were reported from Andhra Pradesh, Gujarat, Kerala and West Bengal. Now, the capital has seen its first ransomware cyber attack, with employees of Rachna Sagar Private Limited “locked†out of more than 200 computers. The cyber attack ... | Wannacry | ||
|
2017-08-17 08:42:28 | Smashing Security #038: Gents! Stop airdropping your pics! (lien direct) |  WannaCry hero Marcus Hutchins (aka MalwareTech) pleads not guilty to malware charges, the Scottish parliament is hit by a brute force attack, IoT smart locks aren't so smart, and.. ahem.. someone is sending intimate pics via AirDrop to unsuspecting commuters.
All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist Geoff White.
|
Guideline | Wannacry | |
|
2017-08-17 07:45:38 | LG Electronics hit by suspected WannaCry attack (lien direct) | LG Electronics have been hit by ransomware that uses malicious code that could signal another WannaCry attack | Wannacry | ||
|
2017-08-16 20:20:40 | Q&A: Why the HBO hack is destined to accelerate the fledgling cyber insurance market (lien direct) | By Byron Acohido, Following on the heels of the two globe-spanning ransomware worms, the HBO hack-with its distinctive blackmail component-rounds out a summer of extortion-fueled hacks and destruction and theft of valuable data at an unprecedented scale. WannaCry and Petya raced around the planet demanding ransoms after locking up servers at hundreds of organizations. The HBO hackers […] | Wannacry | ||
 |
2017-08-16 13:00:00 | GlobeImposter Ransomware on the Rise (lien direct) |
Ah, the summer anthem. That quintessential song that defines summertime as much as hot nights, barbeques, and beach vacations. Whether it’s the Beach Boys’ “I Get Around” (1964), Springsteen’s “Dancing in the Dark” (1984), or Pearl Jam’s “Last Kiss” (1999), the summer anthem is transcendent, yet perfectly emblematic of its time.
If InfoSec had a 2017 summer anthem, we might be hearing Taylor Swift or Drake singing about ransomware. Wouldn’t that be catchy? That’s because global ransomware campaigns like WannaCry and NotPetya have largely defined the summer season this year, and now, there’s a new ransomware remix topping the charts—GlobeImposter 2.0.
Originally detected in March 2017, GlobeImposter 2.0 targets Windows systems and is being distributed through malicious email attachments (MalSpam). In recent weeks, we’ve seen a surge in activity in the Open Threat Exchange (OTX) around GlobeImposter and its many variants. Thus, it’s important to understand how the ransomware initiates, spreads, and evades detection.
GlobeImposter Ransomware at a Glace
Distribution Method: Malicious email attachment (MalSpam)
Type: Trojan
Target: Windows systems
Variants: many (see below)
How GlobeImposter Works
The recent GlobeImposter attacks have largely been traced to MalSpam campaigns—emails carrying malicious attachments. In this case, the email messages appear to contain a .zip attachment of a payment receipt, which, in reality, contains a .vbs or .js malware downloader file.
Sample email subject lines include:
Receipt#83396
Receipt 21426
Payment-421
Payment Receipt 222
Payment Receipt#97481
Payment Receipt_8812
Receipt-351
Payment Receipt_03950
Once the attachment is downloaded and opened, the downloader gets and runs the GlobeImposter ransomware. You can get a list of known malicious domains from the GlobeImposter OTX pulse here. Note that some of the known malicious domains are legitimate websites that have been compromised.
Like other pieces of ransomware, GlobeImposter works to evade detection while encrypting your files. After encryption is complete, an HTML ransom note is dropped on the desktop and in the encrypted folders for the victim to find, including instructions for purchasing a decryptor. There are no known free decryptor tools available at this time.
You can read a detailed analysis of a sample of GlobeImposter at the Fortinet blog, here and at Malware Traffic Analysis, here.
GlobeImposter Variants on the Rise
What’s striking about the recent uptick in GlobeImposter ransomware activity is the near-daily release of new variants of the ransomware. Lawrence Abrams at BleepingComputer has a nice rundown of new GlobeImposter variants and file e |
NotPetya Wannacry APT 32 | ||
|
2017-08-15 04:14:23 | Warning: Two Dangerous Ransomware Are Back – Protect Your Computers (lien direct) | Ransomware has been around for a few years but has become an albatross around everyone's neck-from big businesses and financial institutions to hospitals and individuals worldwide-with cyber criminals making millions of dollars.
In just past few months, we saw a scary strain of ransomware attacks including WannaCry, Petya and LeakerLocker, which made chaos worldwide by shutting down hospitals
|
Wannacry | ||
|
2017-08-15 04:06:33 | WannaCry hero Marcus Hutchins under house arrest (lien direct) | Briton, 23, pleads not guilty to charges of writing and distributing malware | Guideline | Wannacry | |
|
2017-08-14 19:22:49 | Windows Search Bug Worth Watching, and Squashing (lien direct) | Patches are available-and should be applied-that address a critical vulnerability in Windows Search that some are calling the next WannaCry. Others aren't so ready to do that. | Wannacry | ||
|
2017-08-14 17:15:53 | FancyBear Use Leaked NSA “WannaCry†Exploit To Target Hospitality Industry (lien direct) | The ISBuzz Post: This Post FancyBear Use Leaked NSA “WannaCry” Exploit To Target Hospitality Industry | Wannacry | ||
|
2017-08-14 06:10:01 | IPS as a Service Blocks WannaCry Spread Across the WAN (lien direct) | One of the most devastating aspects of the recent WannaCry ransomware attack was its self-propagating capability exploiting a vulnerability in the file access protocol, SMB v1.
Most enterprises defences are externally-facing, focused on stopping incoming email and web attacks. But, once attackers gain a foothold inside the network through malware, there are very few security controls that
|
Wannacry |
To see everything:
Our RSS (filtrered)
