extortion

Ransomware recap 2023 highlights cybersecurity crisis

CyberInt, cybersecurity, Don't miss, extortion, Hot stuff, Ransomware, supply chain attacks, Video /

Ransomware recap 2023 highlights cybersecurity crisis 2024-01-30 at 07:02 By Help Net Security In this Help Net Security video, Yochai Corem, CEO of Cyberint, explores the ransomware environment’s development, effects, and emerging patterns throughout the previous year. 2023 marked a historic high for ransomware groups, with a 55.5% increase in attacks, reaching 4,368 victims globally, […]

React to this headline:

Loading spinner

Ransomware recap 2023 highlights cybersecurity crisis Read More »

Poorly secured PostgreSQL, MySQL servers targeted by ransomware bot

Border0, database security, Don't miss, extortion, Hot stuff, Intruder, MariaDB, MongoDB, MySQL, News, PostgreSQL /

Poorly secured PostgreSQL, MySQL servers targeted by ransomware bot 2024-01-18 at 17:03 By Zeljka Zorz Users exposing poorly secured PostgreSQL and MySQL servers online are in danger of getting their databases wiped by a ransomware bot, Border0 researchers are warning. The attackers asks for a small sum to return / not publish the data, but

React to this headline:

Loading spinner

Poorly secured PostgreSQL, MySQL servers targeted by ransomware bot Read More »

“Security researcher” offers to delete data stolen by ransomware attackers

Arctic Wolf Networks, data theft, Don't miss, enterprise, extortion, News, Ransomware, SMBs /

“Security researcher” offers to delete data stolen by ransomware attackers 2024-01-09 at 12:32 By Zeljka Zorz When organizations get hit by ransomware and pay the crooks to decrypt the encrypted data and delete the stolen data, they can never be entirely sure the criminals will do as they promised. And even if an organization gets

React to this headline:

Loading spinner

“Security researcher” offers to delete data stolen by ransomware attackers Read More »

Law enforcement seizes ALPHV/Blackcat sites, offers decryptor to victims

decrypter, Don't miss, Europol, extortion, FBI, Hot stuff, law enforcement, News, Ransomware, USA /

Law enforcement seizes ALPHV/Blackcat sites, offers decryptor to victims 19/12/2023 at 19:04 By Zeljka Zorz The US Justice Department announced today a disruption campaign against the Blackcat/ALPHV ransomware group and let victims know that there is a decryptor they can use. FBI develops ALPHV/Blackcat decryptor Over the past 18 months, ALPHV/Blackcat has emerged as the

React to this headline:

Loading spinner

Law enforcement seizes ALPHV/Blackcat sites, offers decryptor to victims Read More »

Vulnerability disclosure: Legal risks and ethical considerations for researchers

cybersecurity, data breach, Don't miss, exploit, extortion, Features, Government, Hot stuff, law, News, opinion, Privacy, Project Black, regulation, remediation, risk assessment, strategy, vulnerability disclosure /

Vulnerability disclosure: Legal risks and ethical considerations for researchers 27/11/2023 at 07:32 By Mirko Zorz In this Help Net Security interview, Eddie Zhang, Principal Consultant at Project Black, explores the complex and often controversial world of vulnerability disclosure in cybersecurity. Zhang explores the intricate balancing act that researchers must perform when navigating the interests of

React to this headline:

Loading spinner

Vulnerability disclosure: Legal risks and ethical considerations for researchers Read More »

The shifting sands of the war against cyber extortion

Analyst1, CISA, Don't miss, extortion, FBI, Government, Hot stuff, law enforcement, News, Ransomware /

The shifting sands of the war against cyber extortion 21/11/2023 at 14:33 By Zeljka Zorz Ransomware and cyber extortion attacks aimed at organizations are not letting up. Occasionally, they even come in pairs. The often large and sometimes massive ransomware recovery costs companies incur when they decide not to meet the demands deter many other

React to this headline:

Loading spinner

The shifting sands of the war against cyber extortion Read More »

Success eludes the International Counter Ransomware Initiative

attacks, collaboration, communication, critical infrastructure, cybercriminals, cybersecurity, Don't miss, Eclipz.io, Expert analysis, Expert corner, extortion, Hot stuff, News, opinion, Ransomware, regulation, threats /

Success eludes the International Counter Ransomware Initiative 13/11/2023 at 09:46 By Help Net Security A swing and a miss by the 50 member countries of the International Counter Ransomware Initiative (CRI), headlined by the US, who have confirmed a commitment to collectively address ransomware. Ransomware, as predicted, is growing at tremendous rates and focusing on

React to this headline:

Loading spinner

Success eludes the International Counter Ransomware Initiative Read More »

MOVEit hackers leverage new zero-day bug to breach organizations (CVE-2023-47246)

0-day, Don't miss, exploit, extortion, Hot stuff, ITSM, Microsoft, News, Ransomware, security update, SysAid, web shell /

MOVEit hackers leverage new zero-day bug to breach organizations (CVE-2023-47246) 09/11/2023 at 18:01 By Helga Labus A critical zero-day vulnerability (CVE-2023-47246) in the SysAid IT support and management software solution is being exploited by Lace Tempest, a ransomware affiliate known for deploying Cl0p ransomware. Lace Tempest has previously exploited zero-day vulnerability (CVE-2023-34362) in Progress Software’s

React to this headline:

Loading spinner

MOVEit hackers leverage new zero-day bug to breach organizations (CVE-2023-47246) Read More »

Public exposure of data breaches is becoming inevitable

Allianz, Artificial Intelligence, cybercrime, cybersecurity, data breach, extortion, News, Ransomware, report, supply chain attacks, survey /

Public exposure of data breaches is becoming inevitable 01/11/2023 at 09:01 By Help Net Security Ransomware incidents rising again as criminals use data exfiltration and supply chain attacks to maximize their leverage, according to Allianz. Allianz Commercial analysis of large cyber losses shows the number of cases in which data is exfiltrated is soaring, as

React to this headline:

Loading spinner

Public exposure of data breaches is becoming inevitable Read More »

Bracing for AI-enabled ransomware and cyber extortion attacks

APT, Artificial Intelligence, attacks, cybercriminals, cybersecurity, Don't miss, education, Email, Expert analysis, Expert corner, extortion, Hot stuff, Malware, News, opinion, phishing, Ransomware, spear-phishing, Zscaler /

Bracing for AI-enabled ransomware and cyber extortion attacks 24/10/2023 at 07:37 By Help Net Security AI has been the shiniest thing in tech since at least November 2022, when ChatGPT was made available to the masses and unveiled the transformative potential of large language models for all the world to see. As businesses scramble to

React to this headline:

Loading spinner

Bracing for AI-enabled ransomware and cyber extortion attacks Read More »

Endpoint malware attacks decline as campaigns spread wider

attacks, cybersecurity, Encryption, Endpoint Security, extortion, Malware, News, Ransomware, report, SSL/TLS, threats, WatchGuard /

Endpoint malware attacks decline as campaigns spread wider 11/10/2023 at 06:31 By Help Net Security In Q2 2023, 95% of malware now arrives over encrypted connections, endpoint malware volumes are decreasing despite campaigns growing more widespread, ransomware detections are declining amid a rise in double-extortion attacks, and older software vulnerabilities persist as popular targets for

React to this headline:

Loading spinner

Endpoint malware attacks decline as campaigns spread wider Read More »

Cl0p’s MOVEit attack tally surpasses 2,000 victim organizations

data breach, Data leak, Don't miss, Emsisoft, extortion, Hot stuff, KonBriefing Research, News, Progress /

Cl0p’s MOVEit attack tally surpasses 2,000 victim organizations 26/09/2023 at 15:01 By Helga Labus The number of victim organizations hit by Cl0p via vulnerable MOVEit installations has surpassed 2,000, and the number of affected individuals is now over 60 million. The victim organizations are overwhelmingly based in the US. “The most heavily impacted sectors are

React to this headline:

Loading spinner

Cl0p’s MOVEit attack tally surpasses 2,000 victim organizations Read More »

National Student Clearinghouse MOVEit breach impacts nearly 900 schools

data breach, data theft, Don't miss, education, extortion, Hot stuff, News, Progress /

National Student Clearinghouse MOVEit breach impacts nearly 900 schools 25/09/2023 at 14:31 By Helga Labus US educational nonprofit organization National Student Clearinghouse (NSC) has revealed that the breach of its MOVEit server ended up affecting almost 900 colleges and universities, and resulted in the theft of personal information of their students. The National Student Clearinghouse

React to this headline:

Loading spinner

National Student Clearinghouse MOVEit breach impacts nearly 900 schools Read More »

Emerging threat: AI-powered social engineering

Artificial Intelligence, cybercrime, cybersecurity, deepfakes, Don't miss, Email, Europe, Expert analysis, Expert corner, extortion, Hot stuff, law, News, phishing, social engineering, WithSecure /

Emerging threat: AI-powered social engineering 06/09/2023 at 07:32 By Help Net Security Social engineering is a sophisticated form of manipulation but, thanks to AI advancements, malicious groups have gained access to highly sophisticated tools, suggesting that we might be facing more elaborate social engineering attacks in the future. It is becoming increasingly evident that the

React to this headline:

Loading spinner

Emerging threat: AI-powered social engineering Read More »

Ransomware: To pay or not to pay

attacks, Barrier Networks, cybersecurity, Don't miss, Expert analysis, Expert corner, extortion, Hot stuff, opinion, Ransomware /

Ransomware: To pay or not to pay 15/08/2023 at 08:05 By Help Net Security Comprehensive security plans and programs must focus on defense, but also on answering these key question: “How will the organization respond to a ransomware attack?”, and “At what point will the option of paying the ransom be on the table?” What

React to this headline:

Loading spinner

Ransomware: To pay or not to pay Read More »

Has the MOVEit hack paid off for Cl0p?

Coveware, cybercrime, data theft, Don't miss, Emsisoft, enterprise, extortion, file-sharing, hack, Hot stuff, KonBriefing Research, News /

Has the MOVEit hack paid off for Cl0p? 24/07/2023 at 17:18 By Zeljka Zorz The number of known Cl0p victims resulting from its Memorial Day attack on vulnerable internet-facing MOVEit Transfer installations has surpassed 420, according to IT market research company KonBriefing Research. The cyber extortion group has lately switched to setting up company-specific leak

React to this headline:

Loading spinner

Has the MOVEit hack paid off for Cl0p? Read More »

8Base ransomware group leaks data of 67 victim organizations

Don't miss, extortion, Hot stuff, News, Ransomware, SMBs, ThreatMon, trends, VMWare /

8Base ransomware group leaks data of 67 victim organizations 28/06/2023 at 16:47 By Helga Labus Lockbit 3.0 is currently the most active ransomware group, NCC Group says in its most recent Threat Pulse report, but new ransomware groups like 8Base and Akira are rising in prominence. Collectively, the various ransomware groups revealed 436 victim organizations

React to this headline:

Loading spinner

8Base ransomware group leaks data of 67 victim organizations Read More »

A third MOVEit vulnerability fixed, Cl0p lists victim organizations (CVE-2023-35708)

Data leak, Don't miss, extortion, file-sharing, Hot stuff, News, Progress, USA, vulnerability, WithSecure /

A third MOVEit vulnerability fixed, Cl0p lists victim organizations (CVE-2023-35708) 19/06/2023 at 15:09 By Zeljka Zorz Progress Software has asked customers to update their MOVEit Transfer installations again, to fix a third SQL injection vulnerability (CVE-2023-35708) discovered in the web application in less that a month. Previously, the Cl0p cyber extortion gang exploited CVE-2023-34362 to

React to this headline:

Loading spinner

A third MOVEit vulnerability fixed, Cl0p lists victim organizations (CVE-2023-35708) Read More »

PoC exploit for exploited MOVEit vulnerability released (CVE-2023-34362)

data theft, Don't miss, exploit, extortion, Horizon3.ai, Hot stuff, Huntress, News, PoC, Progress, Rapid7, UK, USA /

PoC exploit for exploited MOVEit vulnerability released (CVE-2023-34362) 13/06/2023 at 14:18 By Zeljka Zorz As more victim organizations of Cl0p gang’s MOVEit rampage continue popping up, security researchers have released a PoC exploit for CVE-2023-34362, the RCE vulnerability exploited by the Cl0p cyber extortion group to plunder confidential data. CVE-2023-34362 PoC exploit released Horizon3 security

React to this headline:

Loading spinner

PoC exploit for exploited MOVEit vulnerability released (CVE-2023-34362) Read More »

Cyber extortion hits all-time high

attacks, Don't miss, extortion, Government, law enforcement, News, Orange Cyberdefense, report /

Cyber extortion hits all-time high 12/06/2023 at 06:32 By Help Net Security Cyber extortion attacks have become increasingly prevalent in recent years, posing a significant threat to organizations of all sizes and industries, according to Orange Cyberdefense. Examining data from a total of 6,707 confirmed business victims, the findings show a fluctuation in the number

React to this headline:

Loading spinner

Cyber extortion hits all-time high Read More »

Scroll to Top