ransomware – Computer Security Articles

Microsoft works with healthcare organizations to protect from popular ransomware during COVID-19 crisis: Here’s what to do

April 1, 2020 admin 0 Comments coronavirus-themed threats, covid-19, cybersecurity, Endpoint security, gateway, healthcare, human-operated ransomware, Microsoft Defender Advanced Threat Protection, Microsoft security intelligence, ransomware, remote work, rEvil, Security Intelligence, Sodinokibi, Threat protection, virtual private network (vpn), virtual private server (vps), VPN

Credit to Author: Eric Avena| Date: Wed, 01 Apr 2020 16:00:13 +0000

Microsoft identified several dozens of hospitals with vulnerable gateway and VPN appliances. We sent these hospitals a first-of-its-kind notification with important info about the vulnerabilities, how attackers can take advantage of them, and a strong recommendation to apply security updates.

The post Microsoft works with healthcare organizations to protect from popular ransomware during COVID-19 crisis: Here’s what to do appeared first on Microsoft Security .

QuickHeal Security

Is the Coronavirus becoming an attack channel for ransomware?

March 30, 2020 admin 0 Comments coronavirus, cybersecurity, ransomware

Credit to Author: Anita Ladkat| Date: Mon, 30 Mar 2020 10:53:19 +0000

Nowadays, everybody is aware of the term, ‘Novel Coronavirus.’ All over the world, 7.7 Billion people have gotten affected by Coronavirus directly or indirectly. It has impacted so badly that currently, entire mankind is frightened and worried about the future of their survival. As per sources, it originated in China…

Security Sophos

Facing down the myriad threats tied to COVID-19

March 24, 2020 admin coronavirus, covid-19, malware, Patch Tuesday, phishing, ransomware, scams, SophosLabs Uncut, spam

Credit to Author: gallagherseanm| Date: Tue, 24 Mar 2020 18:21:40 +0000

EDITOR’S NOTE: This is an ongoing, live report and will be updated continuously with new information as it becomes available.<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/2LILTixT6V0″ height=”1″ width=”1″ alt=””/>

Microsoft Security

Latest Astaroth living-off-the-land attacks are even more invisible but not less observable

March 23, 2020 admin alternate data streams (ads), Astaroth, behavioral blocking and containment, cybersecurity, Endpoint security, fileless, info-stealing malware, living-off-the-land, Microsoft Defender Advanced Threat Protection, Microsoft security intelligence, ransomware, Security Intelligence, Threat protection, WMIC

Credit to Author: Eric Avena| Date: Mon, 23 Mar 2020 16:00:01 +0000

Astaroth is back sporting significant changes. The updated attack chain maintains Astaroth’s complex, multi-component nature and continues its pattern of detection evasion.

The post Latest Astaroth living-off-the-land attacks are even more invisible but not less observable appeared first on Microsoft Security .

Independent Krebs

Security Breach Disrupts Fintech Firm Finastra

March 20, 2020 admin data breach, finastra, Other, ransomware, tom kilroy

Credit to Author: BrianKrebs| Date: Fri, 20 Mar 2020 16:52:19 +0000

Finastra, a company that provides a range of technology solutions to banks worldwide, said it was shutting down key systems in response to a security breach discovered Friday morning. The company’s public statement and notice to customers does not mention the cause of the outage, but their response so far is straight out of the playbook for dealing with ransomware attacks.

MalwareBytes Security

Coronavirus scams, found and explained

March 20, 2020 admin 1 470 59828, 93 784 50 17, Agent Tesla, boresha credit service limited, brennan@caesars.com, cdc, center for disease control and prevention, coronavirus, coronavirus malware, covid 19 tracker app, covid-19, covid-19 who recommended v.gz, formbook, guloader, HawkEye, hawkeye keylogger, info@bcsl.co.ke, keylogger, keyloggers, Lastline, netwire, netwire rat, netwire remote access trojan, no 29 jerusalem street, novel coronavirus, ransomware, Reddit, research hospital isreal, RiskIQ, sarah@who.com, scams, thugcrowd, trn no. 100269864300003, Trojan, trojans, Twitter, us cdc, who, World Health Organization

Credit to Author: David Ruiz| Date: Fri, 20 Mar 2020 15:00:00 +0000

Here are some of the many coronavirus email scams that Malwarebytes spotted in the wild, with full details on what they say, what they’re lying about, and which malware they’re trying to install on your machine.

Categories:

Scams

Tags: 1 470 59828 93 784 50 17 Agent Tesla Boresha Credit Service Limited brennan@caesars.com CDC center for disease control and prevention coronavirus coronavirus malware Covid 19 Tracker App covid-19 COVID-19 WHO RECOMMENDED V.gz FormBook GuLoader HawkEye HawkEye keylogger info@bcsl.co.ke keylogger keyloggers LastLine NetWire NetWire RAT NetWire Remote Access Trojan NO 29 JERUSALEM STREET Novel Coronavirus ransomware reddit RESEARCH HOSPITAL ISREAL RiskIQ sarah@who.com ThugCrowd TRN No. 100269864300003 trojan Trojans twitter US CDC WHO World Health Organization

(Read more…)

The post Coronavirus scams, found and explained appeared first on Malwarebytes Labs.

QuickHeal Security

Fake Coronavirus tracking app exploiting our fear and vulnerable social situation

March 20, 2020 admin Android, coronavirus, cybersecurity, ransomware

Credit to Author: Digvijay Mane| Date: Fri, 20 Mar 2020 14:47:55 +0000

As the Coronavirus spreads across countries creating fear across the globe, everybody wants to stay on top of any information related to it wanting to remain safe and away from infected people. Malware authors are also taking advantage of this situation. Previously on the Android Playstore, there were many applications present which claimed that they could provide Coronavirus tracking information. But Google has set up some rules for these types of applications and have considered these under the ‘Sensitive events’ category. According to policies from this rule, Google proactively removed many applications from Playstore to stop malware authors to take advantage of this situation. But malware authors have used another way to enter into the user’s phone….

Microsoft Security

Secured-core PCs: A brief showcase of chip-to-cloud security against kernel attacks

March 18, 2020 admin chip to cloud security, cve-2018-19320, cybersecurity, hypervisor-protected code integrity (hvci), kernel attacks, Microsoft Defender ATP, ransomware, robbinhood, secured-core pcs, virtualization-based security (vbs), Windows Defender System Guard

Credit to Author: Eric Avena| Date: Tue, 17 Mar 2020 16:00:49 +0000

Secured-core PCs combine virtualization, operating system, and hardware and firmware protection. Along with Microsoft Defender ATP, Secured-core PCs provide end-to-end protection against advanced attacks that leverage driver vulnerabilities to gain kernel privileges.

The post Secured-core PCs: A brief showcase of chip-to-cloud security against kernel attacks appeared first on Microsoft Security .

← Previous