June 20, 2024 at 05:32PM RansomHub ransomware has a Linux encryptor tailored for VMware ESXi environments. Launched in February 2024, RansomHub has affected over 45 victims across 18 countries. An ESXi variant was detected in April 2024, presenting a bug that defenders can exploit. Additionally, the encryptor has specific commands and a unique encryption scheme. … Read more
May 30, 2024 at 07:45AM Europol conducted Operation Endgame, shutting down infrastructure linked to malware loaders like IcedID and TrickBot. The action led to the dismantling of over 100 servers globally and the arrest of four individuals. This resulted in the confiscation of more than 2,000 domains, with one suspect allegedly making €69 million from … Read more
May 29, 2024 at 08:12AM Cigent Technology introduces new endpoint data protection platform focusing on preventing ransomware by safeguarding customer data from encryption and exfiltration. The approach prioritizes data protection to prevent the need for response post-detection. The solution provides user-friendly, automatic encryption and MFA authentication, with flexibility in protecting files and integrating with existing … Read more
February 29, 2024 at 04:24PM Morphisec’s endpoint security system (MTD) appoints Ron Reinfeld as the new CEO, succeeding Ronen Yehoshua, who remains the President. Reinfeld’s CFO experience at IntSights and Zooz, along with advisory roles at tech startups, positions him to lead Morphisec’s continued growth and profitability. The company’s positive shift includes plans for ongoing … Read more
February 2, 2024 at 05:31PM Welcome to CISO Corner, a weekly digest presented by Dark Reading catering to security operations readers and leaders. In this issue, discussions include the evolving role of the Chief Information Security Officer, tailored cybersecurity education for younger users, the adoption of Secure Access Service Edge (SASE) by airlines, recognizing security … Read more
January 18, 2024 at 03:14PM The Trend Micro’s Trend Vision One™ platform integrates business email security with collaboration, addressing the increasing need for unified protection. It provides comprehensive threat protection, detection, and response across email, servers, cloud, and network, assisting IT and security teams in managing risks effectively. The solution aims to prevent phishing, ransomware, … Read more
January 6, 2024 at 08:30AM A ban on ransomware payments is suggested but is unlikely to work due to various reasons. Excluding critical infrastructure from the ban is essential, as not paying a ransom in these cases could risk lives. Additionally, enforcement and international cooperation present significant challenges. Instead, organizations should focus on enhancing their … Read more
January 5, 2024 at 02:31PM The FBI is expanding cyber-related positions in American embassies, adding six new positions in Brasilia, New Delhi, and Rome. The move aims to enhance coordinated international law enforcement actions to combat cybercrime. This underscores the FBI and Justice Department’s heightened focus on actively disrupting criminal threat actors and reducing ransom … Read more
December 8, 2023 at 03:11PM A fresh wave of ransomware attacks is sweeping U.S. municipalities, including Dallas, which experienced a cyberattack by the Play ransomware gang. This trend extends globally, affecting entities in Germany, Hungary, and Slovakia. Municipalities are ill-equipped to defend against such attacks, facing understaffing, underfunding, and inadequate cybersecurity training, highlighting the urgent … Read more
November 30, 2023 at 02:06PM Cactus ransomware targets Qlik Sense analytics platform vulnerabilities for network access, exploiting unpatched systems to gain control, download tools, and deploy ransomware. Updates have been released to address critical flaws; users are advised to install designated patches. Arctic Wolf reports Cactus uses advanced techniques for persistence, lateral movement, and data … Read more