Author: DEFENDEDGE
-
DarkSide Ransomware Gang Extorted $90 Million from Several Victims in 9 Months
DarkSide Ransomware Gang Extorted $90 Million from Several Victims in 9 Months The hacker group behind the Colonial Pipeline ransomware attack, DarkSide that went in operation in August 2020, received $90 million in bitcoin payments after a 9 month ransomware spree. DarkSide is just one of the many groups that operated as a service provider… Read more
-
Apple Exec Calls Level of Mac Malware ‘Unacceptable’
Company is using threat of attacks as defense in case brought against it by Epic Games after Fortnite was booted from the App Store for trying to circumvent developer fees. Read more
-
Defending Against Ransomware
Defending Against Ransomware Ransomware is a rapidly growing threat affecting numerous private companies and government agencies. Ransomware can encrypt files on a device rendering them usable until a ransom is paid in exchange for its depiction. Any given attack could cost thousands to millions of dollars in loss of capabilities, recovering data, or repairing system… Read more
-
Update to CISA-FBI Joint Cybersecurity Advisory on DarkSide Ransomware
Original release date: May 19, 2021 CISA and the Federal Bureau of Investigation (FBI) have updated Joint Cybersecurity Advisory AA21-131A: DarkSide Ransomware: Best Practices for Preventing Disruption from Ransomware Attacks, originally released May 11, 2021. This update provides a downloadable STIX file of indicators of compromise (IOCs) to help network defenders find and mitigate activity… Read more
-
Can Nanotech Secure IoT Devices From the Inside-Out?
Work’s being done with uber-lightweight nanoagents on every IoT device to stop malicious behavior, such as a scourge of botnet attacks, among other threats. Read more
-
Keksec Cybergang Debuts Simps Botnet for Gaming DDoS
The newly discovered malware infects IoT devices in tandem with the prolific Gafgyt botnet, using known security vulnerabilities. Read more
-
Windows PoC Exploit Released for Wormable RCE
The exploit pries open CVE-2021-31166, a bug with a CVSS score of 9.8 that was the baddest of the bad in Microsoft’s Patch Tuesday release last week. Read more
-
Microsoft, Adobe Exploits Top List of Crooks’ Wish List
You can’t possibly patch all CVEs, so focus on the exploits crooks are willing to pay for, as tracked in a study of the underground exploit market. Read more
-
Magecart Goes Server-Side in Latest Tactics Changeup
The latest Magecart iteration is finding success with a new PHP web shell skimmer. Read more
-
Vulnerability Summary for the Week of May 10, 2021
Original release date: May 17, 2021 The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available. High Vulnerabilities Primary Vendor… Read more