#DataEncryption

Microsoft hits snooze again on security certificate renewal

by

June 28, 2024 at 09:35AM Microsoft’s TLS certificate expiration has caused unwanted security warnings for users accessing cdn.uci.officeapps.live.com, prompting concerns from cybersecurity software. The expired TLS certificate poses risks of data insecurity and potential service outages for Microsoft 365 and Office Online users, including errors and warnings for administrators and customers. Microsoft suggests monitoring and … Read more

Chinese and N. Korean Hackers Target Global Infrastructure with Ransomware

by

June 26, 2024 at 06:57AM Between 2021 and 2023, threat actors with ties to China and North Korea have conducted ransomware attacks targeting government and critical infrastructure sectors worldwide. Cybersecurity firms linked these attacks to groups including ChamelGang and state-sponsored entities. The use of ransomware in cyber espionage operations blurs the lines between cybercrime and … Read more

CISA says crooks used Ivanti bugs to snoop around high-risk chemical facilities

by

June 25, 2024 at 09:48AM US cybersecurity agency CISA is warning high-risk chemical facilities to secure their online accounts after a breach in its Chemical Security Assessment Tool (CSAT) portal. The breach could have given unauthorized access to sensitive data on chemical facilities, such as dangerous chemicals stored and security vulnerabilities. CISA advised affected individuals … Read more

New Fog ransomware targets US education sector via breached VPNs

by

June 6, 2024 at 02:34PM In May 2024, the ransomware ‘Fog’ targeted U.S. educational organizations using compromised VPN credentials. Notably, it employs double-extortion tactics by stealing data. With access to internal networks, attackers conduct various malicious activities and deploy the ransomware, appending encrypted files with specific extensions. Victims are directed to a Tor dark website … Read more

Google Maps Timeline Data to be Stored Locally on Your Device for Privacy

by

June 6, 2024 at 04:18AM Google will store Maps Timeline data locally on users’ devices starting December 1, 2024, instead of on their Google account. This change follows Google’s announcement in December 2023 to reduce the auto-delete control for Location History to three months by default. The updates are gradually rolling out to all users … Read more

‘Fog’ Ransomware Rolls in to Target Education, Recreation Sectors

by

June 4, 2024 at 04:05PM A new ransomware group, “Fog,” has been conducting traditional attacks by locking up data in virtual environments for quick payouts. They utilize stolen VPN credentials, exploit vulnerabilities in VPN gateways, and employ tactics like credential stuffing and disabling Windows Defender. Fog targets US organizations, especially in the education sector, due … Read more

New ShrinkLocker ransomware uses BitLocker to encrypt your files

by

May 24, 2024 at 11:01AM ShrinkLocker is a new ransomware strain that utilizes Windows BitLocker to encrypt systems by creating new boot volumes. It employs previously unreported features to maximize the attack’s damage and targets specific Windows versions. The malware modifies registry entries and denies recovery options, indicating a destructive intent rather than financial gain. … Read more

GE Ultrasound Gear Riddled With Bugs, Open to Ransomware & Data Theft

by

May 16, 2024 at 03:40PM Researchers found 11 security flaws in GE’s Vivid Ultrasound products and related software, with severity ranging from 5.7 to 9.6 on the CVSS 3.1 scale. Nozomi Networks detailed potential risks, including remote code execution, but physical access is needed in some cases. GE has patches and mitigations available on its … Read more

Ukrainian REvil Ransomware Affiliate Gets 13 Years in US Prison

by

May 3, 2024 at 04:15AM Ukrainian national Yaroslav Vasinskyi, 24, was sentenced to 13 years and seven months in the US for his involvement in the REvil ransomware operation, particularly in the Kaseya attack impacting 1,500 organizations. Vasinskyi admitted to launching over 2,500 attacks, demanding $700 million in ransom and laundering proceeds using crypto exchanges. … Read more

Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers

by

April 19, 2024 at 07:48AM The Akira ransomware group has extorted $42 million from over 250 victims by targeting businesses and critical infrastructure worldwide. They initially focused on Windows systems before deploying a Linux variant. The group exploits known vulnerabilities in Cisco appliances and uses various methods to establish persistence and evade detection. Akira is … Read more