July 29, 2024 at 01:12PM Microsoft alerted of ransomware gangs exploiting VMware ESXi authentication bypass vulnerability, allowing attackers to gain full admin privileges. This flaw, CVE-2024-37085, was discovered by Microsoft researchers and patched in ESXi 8.0 U3 last month. The vulnerability has been exploited in ransomware attacks by various groups, leading to data theft and … Read more
July 26, 2024 at 05:00AM The U.S. Department of Justice indicted a North Korean operative for ransomware attacks on healthcare facilities to fund illicit activities. The U.S. Department of State offered up to $10 million for information. The operative is linked to a hacking crew deploying the Maui ransomware, targeting U.S. Air Force bases and … Read more
July 25, 2024 at 03:51PM Rim Jong Hyok, linked to a North Korean military intelligence agency, faces indictment for allegedly leading cyber attacks on American health care providers, NASA, and military bases. He used money laundering to finance the attacks, disrupting patient treatment and stealing unclassified data from NASA. A reward of up to $10 … Read more
July 18, 2024 at 04:03PM Ransomware Awareness Month in July raises awareness of ransomware as a top cyber threat. The recent attacks on CDK Global by the BlackSuit group demonstrate the severity, impacting 15,000 auto retailers. There’s been a 29% increase in ransomware attacks in Q1 2024, emphasizing the urgency for organizations to prioritize good … Read more
July 15, 2024 at 04:42PM The SEXi ransomware group, now operating as APT Inc., uses leaked Babuk and LockBit 3 encryptors to target VMware ESXi and Windows servers. They demand ransom varying from thousands to millions and have no known weaknesses in their encryption methods. Victims have publicly shared their experiences, including ransom notes with … Read more
July 11, 2024 at 06:55PM In 2023, the cryptocurrency industry saw a surge in cybercrime, with ransomware attacks, money laundering, and stolen funds being prevalent. Despite a decrease in money laundering, the value of stolen funds decreased, and cryptocurrency scams remained significant. Darknet markets showed signs of recovery but didn’t reach previous revenue levels. Vigilance … Read more
July 8, 2024 at 02:07PM The cyber-insurance market has seen a significant decline in premium rates, making coverage more accessible to organizations of all sizes. Factors contributing to this decrease include a more competitive marketplace, improved cyber hygiene, and better risk assessment by insurers. Despite a rise in cyber-attacks, prices are expected to remain stable … Read more
June 25, 2024 at 08:09AM UK and US authorities have united to combat the Qilin ransomware gang’s assault on the healthcare industry. The group’s attack on a UK pathology service disrupted thousands of surgeries and led to stolen patient data being leaked. Investigations by NHS England and law enforcement agencies are ongoing to respond to … Read more
June 20, 2024 at 10:40AM The NIST Cybersecurity Framework 2.0 (NIST CSF 2.0) arrives at a critical moment, as ransomware attacks and other cybersecurity threats are on the rise. It emphasizes the need for organizations to reevaluate their security measures, make targeted investments, and prioritize organization-wide security hygiene to effectively combat evolving cyber threats. Based … Read more
June 20, 2024 at 10:22AM LockBit ransomware group boasted a 665% increase in attack volume in May 2024, reclaiming its spot as the most active gang. Despite disruptions by law enforcement earlier in the year and a subsequent $10 million reward announcement, their activities have rebounded, with a significant uptick in attacks globally. The group’s … Read more