July 2, 2024 at 07:07AM The cybersecurity threat landscape has seen a substantial rise in average ransomware payments, with increases over 500%. The surge is attributed to cybercriminals better targeting organizations for larger ransom payments, as well as the utilization of Generative AI in creating convincing phishing attacks. Implementing next-generation MFA technologies, including biometrics, is … Read more
June 25, 2024 at 05:23AM Summary: Ransomware attacks have become a major concern for businesses, with a rise in targeted attacks on backup storage. Object First, in collaboration with Veeam, offers a Zero Trust Data Resilience framework, featuring immutable backup storage and end-to-end encryption to protect against ransomware threats. The solution enhances data protection and … Read more
June 20, 2024 at 05:32PM RansomHub ransomware has a Linux encryptor tailored for VMware ESXi environments. Launched in February 2024, RansomHub has affected over 45 victims across 18 countries. An ESXi variant was detected in April 2024, presenting a bug that defenders can exploit. Additionally, the encryptor has specific commands and a unique encryption scheme. … Read more
May 28, 2024 at 12:52PM Secure storage provider SpiderOak continues to face operational issues over a month after a datacenter upgrade. Angry users threaten to cancel their subscriptions after facing ongoing problems with backups. The company is honoring cancellation requests, refunding users, and working on restoring full operability. Users report issues with billing and performance. … Read more
May 23, 2024 at 01:39PM Ransomware attacks on VMware ESXi infrastructure show a consistent pattern, targeting virtualization platforms due to inherent misconfigurations and vulnerabilities. The attacks involve various steps, including initial access, privilege escalation, ransomware deployment, and data exfiltration. Organizations are advised to implement monitoring, robust backups, strong authentication, and network restrictions to mitigate these … Read more
May 22, 2024 at 11:09AM Readers of The Register were recently surveyed about the risks posed by ransomware and the security defenses in place to protect sensitive data. The results will be presented by Zerto’s Anthony Dutra at a live event in Boston on June 27. Attendees can also access related white papers on Zerto’s … Read more
May 22, 2024 at 10:04AM As the world becomes increasingly digitized, the rise in cyberattacks and data breaches necessitates urgent enhancement of cybersecurity measures. New mandates include SEC’s breach disclosure rules for smaller reporting companies by June 15, and federal agencies aiming to meet zero-trust goals by Sept. 30. An additional focus is requisite on … Read more
May 13, 2024 at 03:22PM A new large-scale LockBit Black ransomware campaign has been sending millions of phishing emails since April, utilizing the Phorpiex botnet. The campaign uses ZIP attachments containing an executable deploying the LockBit Black payload to encrypt systems. The phishing emails originate from various aliases and are sent from over 1,500 unique … Read more
May 7, 2024 at 04:11PM CISA is launching a Ransomware Vulnerability Warning Pilot program to help healthcare, schools, and critical infrastructure organizations address security flaws exploited by ransomware groups. The system sent 1,754 notifications in its first year, resulting in 49% of organizations taking action. The program is set to become a fully automated warning … Read more
May 6, 2024 at 09:15AM CyberNut, a Miami-based startup, has unveiled a security awareness training platform tailored for K-12 schools to combat data breaches. The AI-powered tool uses gamification to train teachers, staff, and students to identify and report phishing attacks. The company recently secured an $800,000 pre-seed funding round and is already working with … Read more