31 May 2019

Researchers fight ransomware attacks by leveraging properties of flash-based storage

A new research paper by two University of Illinois students and their assistant professor proposes a new approach to tackling ransomware attacks that takes advantage of “properties of flash-based storage that currently exist in most laptops, desktops, mobiles, and even IoT devices.” The innovative approach relies on the way flash-based

Read More
30 May 2019

Impersonation Attacks Up 67% for Corporate Inboxes

More than six out of ten (61%) IT decision makers are anticipating impactful email-based cyberattacks on their organization in the coming year, a new Mimecast report shows. Looking at the threat landscape, their worries are completely justified, since a whopping 94% of companies suffered a phishing attack in 2018. According

Read More
30 May 2019

How WannaCry is still launching 3,500 successful attacks per hour

More than two years after the WannaCry ransomware worm encrypted files on hundreds of thousands of computers across the globe, the malware developed by the North Korean state-backed Lazarus Group still resides on around 145,000 devices, a new report by Armis shows. Over the past 6 months, the malware has

Read More
27 May 2019

In Baltimore and Beyond, a Stolen NSA Tool Wreaks Havoc

The ransomware attack on the City of Baltimore that has rendered the city’s email system and various other systems unavailable since May 7 involved the use of EternalBlue, a hacking tool developed by the National Security Agency (NSA) that was leaked about two years ago by the Shadow Brokers, a

Read More
27 May 2019

Hackers are scanning for MySQL servers to deploy GandCrab ransomware

Sophos researchers have discovered a new ransomware campaign targeting Internet-facing MySQL servers running on Windows systems. Threat actors are actively scanning the web for MySQL databases running on Windows platforms. When they discover a MySQL server, they first verify that it is running on Windows and then try to infect

Read More
23 May 2019

Baltimore Email, Other Systems Still Offline from May 7 Ransomware Attack

More than two weeks after the City of Baltimore, Maryland suffered a ransomware attack, the city’s email system and various other systems have still not been restored. The City was targeted by a ransomware strain dubbed Robbinhood. The threat actors behind the file-encrypting malware demanded a ransom of 13 Bitcoin

Read More
22 May 2019

Ransomware Not Gone but More Targeted, Report Says

A new Fortinet report underscores the current trend toward sophisticated, targeted cyberattacks involving custom code and living-off-the-land (LotL) techniques that enable attackers to take advantage of applications and processes already present on victim machines. Ransomware is no exception in this regard, for even though ransomware rates have dropped, targeted ransomware

Read More
20 May 2019

Ransomware and malware attacks decline, attackers adopting covert tactics

New figures released by Microsoft indicate that global ransomware attacks fell by 60% between March and December of last year, while malware attacks declined in general. Instead, threat actors are launching campaigns that rely on more covert attack techniques such as phishing and social engineering in general. Cyber criminals also

Read More
16 May 2019

Baltimore Ransomware Siege Enters Second Week of Bitcoin Extortion Attack

The City of Baltimore, Maryland still has not recovered from the ransomware infection that prompted it to shut down most of its servers on May 7. While the city’s most essential services such as emergency services remain operational, many other systems are down. The City was targeted by a ransomware

Read More
09 May 2019

This ransomware sneakily infects victims by disguising itself with anti-virus software

Researchers at Trend Micro have uncovered a sneaky new campaign involving the notorious Dharma ransomware that has been targeting companies around the globe since at least 2016. In order to increase the success rate of their attacks, the threat actors behind Dharma have now integrated it into a phony anti-virus

Read More