Tag: ransomware
-
The Register: UK’s Sellafield nuke waste processing plant fined £333K for infosec blunders
Source URL: https://www.theregister.com/2024/10/05/sellafield_nuclear_site_fined/ Source: The Register Title: UK’s Sellafield nuke waste processing plant fined £333K for infosec blunders Feedly Summary: Radioactive hazards and cyber failings … what could possibly go wrong? The outfit that runs Britain’s Sellafield nuclear waste processing and decommissioning site has been fined £332,500 ($440,000) by the nation’s Office for Nuclear Regulation…
-
The Register: More than a quarter of a million Comcast subscribers had data stolen from debt collector
Source URL: https://www.theregister.com/2024/10/04/comcast_fcbs_data_breach/ Source: The Register Title: More than a quarter of a million Comcast subscribers had data stolen from debt collector Feedly Summary: Cable giant says ransomware involved, FBCS keeps schtum Comcast says data on 237,703 of its customers was in fact stolen in a cyberattack on a debt collector it was using, contrary…
-
Cisco Talos Blog: CISA is warning us (again) about the threat to critical infrastructure networks
Source URL: https://blog.talosintelligence.com/threat-source-newsletter-oct-3-2024/ Source: Cisco Talos Blog Title: CISA is warning us (again) about the threat to critical infrastructure networks Feedly Summary: Despite what lessons we thought we learned from Colonial Pipeline, none of those lessons have been able to be put into practice. AI Summary and Description: Yes Summary: The text discusses current cybersecurity…
-
Schneier on Security: Weird Zimbra Vulnerability
Source URL: https://www.schneier.com/blog/archives/2024/10/weird-zimbra-vulnerability.html Source: Schneier on Security Title: Weird Zimbra Vulnerability Feedly Summary: Hackers can execute commands on a remote computer by sending malformed emails to a Zimbra mail server. It’s critical, but difficult to exploit. In an email sent Wednesday afternoon, Proofpoint researcher Greg Lesnewich seemed to largely concur that the attacks weren’t likely…
-
Cisco Talos Blog: Threat actor believed to be spreading new MedusaLocker variant since 2022
Source URL: https://blog.talosintelligence.com/threat-actor-believed-to-be-spreading-new-medusalocker-variant-since-2022/ Source: Cisco Talos Blog Title: Threat actor believed to be spreading new MedusaLocker variant since 2022 Feedly Summary: Cisco Talos has discovered a financially motivated threat actor, active since 2022, recently observed delivering a MedusaLocker ransomware variant. Intelligence collected by Talos on tools regularly employed by the threat actor allows us to see…
-
The Register: Ransomware crew infects 100+ orgs monthly with new MedusaLocker variant
Source URL: https://www.theregister.com/2024/10/03/ransomware_spree_infects_100_orgs/ Source: The Register Title: Ransomware crew infects 100+ orgs monthly with new MedusaLocker variant Feedly Summary: Crooks ‘like a sysadmin, with a malicious slant’ Exclusive An extortionist armed with a new variant of MedusaLocker ransomware has infected more than 100 organizations a month since at least 2022, according to Cisco Talos, which…
-
Slashdot: Police Arrest Four Suspects Linked To LockBit Ransomware Gang
Source URL: https://yro.slashdot.org/story/24/10/02/2256250/police-arrest-four-suspects-linked-to-lockbit-ransomware-gang?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Police Arrest Four Suspects Linked To LockBit Ransomware Gang Feedly Summary: AI Summary and Description: Yes Summary: The text highlights a significant international law enforcement operation against the LockBit ransomware gang, resulting in multiple arrests and sanctions. This event underscores the ongoing challenges in cybersecurity, particularly in combating ransomware…
-
The Register: Euro cops arrest 4 including suspected LockBit dev chilling on holiday
Source URL: https://www.theregister.com/2024/10/01/euro_cops_arrest_four_mystery/ Source: The Register Title: Euro cops arrest 4 including suspected LockBit dev chilling on holiday Feedly Summary: And also: What looks like proof that stolen data was never deleted even after ransom was paid Building on the success of what’s known around here as LockBit Leak Week in February, the authorities say…
-
Microsoft Security Blog: Storm-0501: Ransomware attacks expanding to hybrid cloud environments
Source URL: https://www.microsoft.com/en-us/security/blog/2024/09/26/storm-0501-ransomware-attacks-expanding-to-hybrid-cloud-environments/ Source: Microsoft Security Blog Title: Storm-0501: Ransomware attacks expanding to hybrid cloud environments Feedly Summary: Microsoft has observed the threat actor tracked as Storm-0501 launching a multi-staged attack where they compromised hybrid cloud environments and performed lateral movement from on-premises to cloud environment, leading to data exfiltration, credential theft, tampering, persistent backdoor…
-
The Register: Evil Corp’s deep ties with Russia and NATO member attacks exposed
Source URL: https://www.theregister.com/2024/10/01/evil_corp_russia_relationship/ Source: The Register Title: Evil Corp’s deep ties with Russia and NATO member attacks exposed Feedly Summary: Ransomware criminals believed to have taken orders from intel services The relationship between infamous cybercrime outfit Evil Corp and the Russian state is thought to be extraordinarily close, so close that intelligence officials allegedly ordered…