menu
techminis

A naukri.com initiative

New

google-web-stories
Home

>

Malware News

Malware News

source image

Gbhackers

1h

read

175

img
dot

REvil Ransomware Affiliate Sentenced for 13 Years in Prison

  • A Ukrainian national, Yaroslav Vasinskyi, also known as Rabotnik, has been sentenced to 13 years and seven months in prison.
  • Vasinskyi orchestrated over 2,500 ransomware attacks worldwide and demanded over $700 million in ransom payments.
  • The Justice Department's international collaboration led to Vasinskyi's extradition from Poland to the United States.
  • The Department of Justice has obtained the final forfeiture of millions of dollars in ransom payments, further crippling the financial infrastructure supporting cybercrime.

Read Full Article

like

10 Likes

share

2 Shares

source image

Gbhackers

1h

read

18

img
dot

USB Malware Attacks Targeting Industrial Systems Adapts LOL Tactics

  • Honeywell’s 2024 GARD USB Threat Report reveals a 33% rise in malware detections on USB devices used in industrial settings.
  • 26% of the malware can cause major disruptions to operational technology (OT) systems.
  • USB-based threats are increasingly targeting industrial control systems (ICS) and Internet of Things (IoT) devices.
  • Robust USB security measures are needed to protect critical infrastructure from cyberattacks.

Read Full Article

like

1 Like

share

Share

source image

Cybersecurity-Insiders

2h

read

322

img
dot

Image Credit: Cybersecurity-Insiders

United Health CEO testifies before senate for ransomware attack

  • In February, Change Healthcare experienced a ransomware attack causing disruptions in medical supply chains and billing procedures.
  • UnitedHealth CEO, Andrew Witty, testified before the Senate regarding the cyber attack.
  • Witty attributed the incident to the absence of multi-factor authentication.
  • Initial estimates suggest a financial loss of $22 million, with concerns of it escalating in the coming months.

Read Full Article

like

19 Likes

share

4 Shares

source image

readwrite

3h

read

476

img
dot

Image Credit: readwrite

Scam alert for Android users as ‘Brokewell’ malware threatens users’ bank accounts

  • Android users are being warned about a severe malware called 'Brokewell' that threatens their bank accounts.
  • Brokewell is a new virus with Device Takeover capabilities, designed to install an Android application through a fake browser update page.
  • The malware poses a significant threat to the banking industry as it provides hackers with remote access to mobile banking assets.
  • Brokewell uses overlay attacks to steal user information and can perform Device Takeover attacks with remote control capabilities.

Read Full Article

like

1 Like

share

1 Share

source image

Gbhackers

5h

read

294

img
dot

Panda Restaurant Corporate Systems Hacked: Customer Data Exposed

  • Panda Restaurant Group, Inc. has confirmed a significant breach in its corporate data systems, potentially compromising customer data.
  • The breach did not impact in-store systems or guest experiences.
  • Immediate action was taken to secure the compromised systems with the help of cybersecurity experts and law enforcement agencies.
  • Panda Restaurant Group is offering affected customers a complimentary membership to an identity protection service to mitigate the risks associated with the breach.

Read Full Article

like

17 Likes

share

4 Shares

source image

Arstechnica

7h

read

80

img
dot

Image Credit: Arstechnica

Hacker free-for-all fights for control of home and office routers everywhere

  • Cybercriminals and nation-state spies coexist inside compromised routers.
  • Financially motivated hackers provide spies with access to compromised routers for a fee.
  • APT groups take control of devices hacked by cybercrime groups.
  • This coexistence creates a blend of financial gain and strategic espionage.

Read Full Article

like

4 Likes

share

1 Share

source image

Pymnts

14h

read

316

img
dot

Image Credit: Pymnts

UnitedHealth Still ‘Trying to Dig Through’ Cause of Cyberattack

  • UnitedHealth's CEO, Andrew Witty, stated that the company is still investigating the security failure that led to a massive cyberattack.
  • The breach occurred when intruders accessed a server without multifactor authentication.
  • UnitedHealth is facing accusations of failing to establish basic security protocols and recover from the breach.
  • The cyberattack could cost UnitedHealth up to $1.6 billion, and a bill has been introduced to incentivize minimum cybersecurity standards in the healthcare industry.

Read Full Article

like

19 Likes

share

4 Shares

source image

Securityaffairs

14h

read

145

img
dot

Image Credit: Securityaffairs

Cuttlefish malware targets enterprise-grade SOHO routers

  • A new malware named Cuttlefish targets enterprise-grade and small office/home office (SOHO) routers to harvest public cloud authentication data.
  • Cuttlefish creates a proxy or VPN tunnel on the compromised router to exfiltrate data and uses stolen credentials to access targeted resources.
  • The malware steals authentication data from web requests passing through the router, performs DNS and HTTP hijacking, and can interact with other devices on the network.
  • Cuttlefish has been active since at least July 2023, primarily targeting public cloud-based services and storing stolen data in logs.

Read Full Article

like

8 Likes

share

2 Shares

source image

Gbhackers

1d

read

41

img
dot

Millions of Malicious “Imageless” Docker Hub Repositories Drop Malware

  • Nearly 20% of Docker Hub repositories have been identified as conduits for malware and phishing scams.
  • Attackers have created almost three million malicious repositories on Docker Hub over the span of three years.
  • These malicious entities leveraged Docker Hub's trusted platform to distribute phishing and malware schemes.
  • JFrog's security research team collaborated with Docker to identify and remove the malicious repositories.

Read Full Article

like

2 Likes

share

Share

source image

Cybersecurity-Insiders

1d

read

3

img
dot

Image Credit: Cybersecurity-Insiders

Crafting an Airtight Security Posture Against Ransomware Threats

  • Ransomware attacks pose a significant threat to individuals and organizations.
  • Implement multi-layered security measures, including firewalls and antivirus software.
  • Regularly update software and systems, and educate employees on cybersecurity best practices.
  • Backup data regularly, monitor and respond to threats, and engage with security experts.

Read Full Article

like

Like

share

Share

source image

Medium

1d

read

209

img
dot

Image Credit: Medium

Understanding Ransomware As a Service (RaaS)

  • Ransomware as a Service (RaaS) is a part of the SaaS business model.
  • RaaS operators develop and sell malicious programs to cybercriminals who lack the time or knowledge to create their own ransomware.
  • RaaS kits offer features like user guides, customer support, user reviews, and forums.
  • RaaS revenue models include affiliate programs, one-time licenses, and pure profit sharing.

Read Full Article

like

12 Likes

share

2 Shares

source image

Arstechnica

1d

read

271

img
dot

Image Credit: Arstechnica

Health care giant comes clean about recent hack and paid ransom

  • Health care giant, Change Healthcare, revealed that the recent ransomware attack on their systems was due to a compromised account that lacked multifactor authentication.
  • The attack, carried out by a ransomware group named ALPHV or BlackCat, caused a nationwide network outage, disrupting the US prescription market for two weeks.
  • As a result of the attack, personal health information for a significant portion of the US population was obtained by the hackers.
  • The breach occurred on February 12 when the hackers obtained an account password for a portal allowing remote access, which did not have multifactor authentication in place.

Read Full Article

like

16 Likes

share

3 Shares

source image

Cybersecurity-Insiders

1d

read

358

img
dot

Image Credit: Cybersecurity-Insiders

Commvault projects Cleanroom Recovery for ransomware thwarting customers

  • Commvault's Cleanroom Recovery leverages Microsoft Azure cloud infrastructure to provide customers with a secure space for immutable data backups.
  • Cleanroom Recovery doubles as a testing environment for companies seeking to fortify their ransomware recovery strategies.
  • Customers gain access to a flexible and scalable infrastructure for testing data recovery plans across diverse IT environments.
  • Cleanroom Recovery facilitates seamless conversion of virtual machines from any hypervisor to Azure VMs.

Read Full Article

like

21 Likes

share

5 Shares

source image

Gbhackers

1d

read

88

img
dot

Redline Malware Using Lua Bytecode to Challenge the SOC/TI Team to Detect

  • Redline Stealer malware variant discovered using Lua bytecode to obfuscate its code
  • Malware found on GitHub, exploiting its popularity and trust to distribute malicious files
  • Redline Stealer communicates with C2 server over HTTP and steals victim information
  • Malware leverages Lua's FFI to bypass monitored channels and evade detection

Read Full Article

like

5 Likes

share

1 Share

source image

Medium

1d

read

61

img
dot

Image Credit: Medium

A Deep Dive into Ransomware in 2024

  • Ransomware attacks have increased by 22% in the first half of 2024 compared to last year.
  • Average ransom payments have surged to $3 million in Q2 of 2024, up from $1.8 million in 2023.
  • Healthcare organizations have seen a 35% increase in ransomware attacks in 2024.
  • Modern ransomware attacks incorporate 'double extortion' tactics and target third-party vendors.

Read Full Article

like

3 Likes

share

Share

Prev

1
2
3
4
5
6
7
8
9
10

Next

For uninterrupted reading, download the app