To gain access to a corporate network, ransomware gangs are increasingly turning to initial access brokers (IABs) and dark web marketplaces instead of breaching targets themselves. By analyzing ransomware gang’s want ads, it is possible to understand the types of companies that are being targeted for attacks. KELA, a cybersecurity intelligence company, compiled a list […]
Blog Grid
Home Depot is increasing its investment in cloud computing to expand its range of digital tools that have helped it meet the surging demand from both professional contractors and DIY customers during the Covid-19 pandemic. The home-improvement chain plans to extend its existing multiyear cloud-services contract with Google Cloud, which will allow the company to […]
Kaseya announced a breach detection tool for clients of its VSA remote monitoring and management product, amid a weekend-long ransomware scare. The tool is not currently on the website, but can be obtained by emailing support@kaseya.com with the subject “Compromise Detection Tool Request.” On Friday, a REvil ransomware affiliate began exploiting a zero-day vulnerability in […]
On Friday, a flood of ransomware hit hundreds of companies around the world. A grocery store chain, a public broadcaster, schools, and a national railway system were all hit by the file-encrypting malware, causing disruption and forcing hundreds of businesses to close. The victims had something in common: a key piece of network management and […]
Bad news comes in threes, most particularly for Western Digital customers. As if things weren’t bad enough for the untold number of Western Digital customers whose data blinked out of existence last month, there’s another zero-day waiting for whoever can’t or won’t upgrade its My Cloud storage devices. The latest zero-day entails an attack chain […]
Attackers could use critical firmware vulnerabilities discovered by Microsoft in some NETGEAR router models as a stepping stone to move laterally within enterprise networks. The security flaws impact DGN2200v1 series routers running firmware versions before v1.0.0.60 and compatible with all major DSL Internet service providers. They allow unauthenticated attackers to access unpatched routers’ management pages […]