July 24, 2024 at 06:48AM Some Windows devices may enter BitLocker recovery mode after installing the July 2024 Windows security updates. This is due to the Device Encryption option being enabled. Affected platforms include various Windows versions. Users impacted by this can unlock the drive using their BitLocker recovery key and Microsoft is investigating the … Read more
July 15, 2024 at 04:42PM The SEXi ransomware group, now operating as APT Inc., uses leaked Babuk and LockBit 3 encryptors to target VMware ESXi and Windows servers. They demand ransom varying from thousands to millions and have no known weaknesses in their encryption methods. Victims have publicly shared their experiences, including ransom notes with … Read more
July 11, 2024 at 03:37AM EstateRansomware exploits unpatched Veeam vulnerabilities to drop LockBit variant ransomware and extort payments from victims. The gang gains initial access through brute force attacks against FortiGate firewalls and exploits a Veeam flaw to establish persistence and execute ransomware. Veeam issued a patch in March 2023, emphasizing the importance of timely … Read more
July 8, 2024 at 10:43AM The newly discovered Eldorado ransomware encrypts files on Windows and Linux systems. The group behind it was first observed in March 2024 and uses advanced encryption techniques to target various industries. It is one of the many emerging ransomware groups, highlighting the need for organizations to stay vigilant against evolving … Read more
July 8, 2024 at 08:51AM Avast researchers have provided decryptors for victims of the DoNex ransomware, a threat that has undergone several rebrands and targeted victims in various countries. The decryptor is freely available and can be run as administrator, with the password-cracking process recommended for the 64-bit version due to its memory-intensive nature. Based … Read more
July 7, 2024 at 11:29AM Europol is addressing challenges posed by privacy-enhancing technologies in Home Routing, which hinder law enforcement’s ability to intercept communications during criminal investigations. This system allows customers to route traffic through their home network, making it difficult for authorities to gather evidence. Europol proposes two solutions to mitigate these obstacles and … Read more
June 28, 2024 at 09:35AM Microsoft’s TLS certificate expiration has caused unwanted security warnings for users accessing cdn.uci.officeapps.live.com, prompting concerns from cybersecurity software. The expired TLS certificate poses risks of data insecurity and potential service outages for Microsoft 365 and Office Online users, including errors and warnings for administrators and customers. Microsoft suggests monitoring and … Read more
June 26, 2024 at 06:57AM Between 2021 and 2023, threat actors with ties to China and North Korea have conducted ransomware attacks targeting government and critical infrastructure sectors worldwide. Cybersecurity firms linked these attacks to groups including ChamelGang and state-sponsored entities. The use of ransomware in cyber espionage operations blurs the lines between cybercrime and … Read more
June 25, 2024 at 09:48AM US cybersecurity agency CISA is warning high-risk chemical facilities to secure their online accounts after a breach in its Chemical Security Assessment Tool (CSAT) portal. The breach could have given unauthorized access to sensitive data on chemical facilities, such as dangerous chemicals stored and security vulnerabilities. CISA advised affected individuals … Read more
June 6, 2024 at 02:34PM In May 2024, the ransomware ‘Fog’ targeted U.S. educational organizations using compromised VPN credentials. Notably, it employs double-extortion tactics by stealing data. With access to internal networks, attackers conduct various malicious activities and deploy the ransomware, appending encrypted files with specific extensions. Victims are directed to a Tor dark website … Read more