Collaborate Disseminate
By Jean Schaffer, Federal CTO, Corelight As the first National Cyber Director begins to settle into office, private industry is very hopeful that this will be one of the turning points to solidify a true private/public partnership for raising the cyber… Continue reading What’s next for the National Cyber Director?
The ransomware gang behind a string of recent attacks that netted tens of millions of dollars may have been too successful for its own good. REvil, the Russian-speaking hacking crew that claimed responsibility for a hack at the IT firm Kaseya that yielded perhaps thousands of victims, largely went dark Tuesday morning, according to multiple security researchers. The dark web site where REvil typically posts victim data and a payment site suddenly went down, while one site apparently ceased responding to Domain Name System requests. The cause of the outages was not immediately clear. Ransomware gangs frequently shutter their operations, update their tradecraft or evolve into different extortion techniques after profitable periods. The White House recently said it reserves the right to “take any necessary action to defend its people and its critical infrastructure” in the face of costly digital extortion attacks. REvil, widely suspected to be based in Russia, […]
The post REvil ransomware gang sites go dark, for reasons that remain unclear appeared first on CyberScoop.
Continue reading REvil ransomware gang sites go dark, for reasons that remain unclear
By Deeba Ahmed
Kaseya VSA has released patches for 3 critical vulnerabilities exploited by the REvil ransomware gang in ransomware attack earlier this month.
This is a post from HackRead.com Read the original post: Kaseya issues patches for vulnerabili… Continue reading Kaseya issues patches for vulnerabilities exploited in ransomware attack
Details on the Kaseya supply-chain and REvil ransomware attack, a new zero-day exploit called “PrintNightmare” affects all Windows versions before June, and how randomly generated passwords in a popular password manager were not so random. ** Links men… Continue reading Kaseya Ransomware Attack, PrintNightmare Zero-day, Kaspersky Password Manager Vulnerability
Ransomware has never been more of a national security concern after a string of hacks against the fuel supplier Colonial Pipeline, meat giant JBS and perhaps thousands of others compromised after breach at a large IT firm. Few people, if any, seem to grasp the breadth and cost of the scourge, as there are no legal requirements for victims to disclose when they pay hackers to unlock their network. That, combined with the suspicious that most victims don’t, report their digital extortion payments, makes it harder for law enforcement and security firms to combat attacks, or even understand how to fight them. That’s the impetus behind a project that Stanford University student and security researcher Jack Cable launched on Thursday, dubbed “Ransomwhere,” a plan to track payments to bitcoin addresses associated with known ransomware gangs. “Having public transparency around the impact of ransomware, especially as we’re proposing and considering different […]
The post Jack Cable, Stanford student and cyber whiz, aims to crowdsource ransomware details appeared first on CyberScoop.
Continue reading Jack Cable, Stanford student and cyber whiz, aims to crowdsource ransomware details
President Joe Biden pushed Russian President Vladimir Putin to disrupt ransomware groups operating within Russian borders in a phone call Friday, according to a White House statement. “I made it very clear to him that the United States expects [that] when a ransomware operation is coming from his soil even though it’s not sponsored by the state, we expect [Russia] to act if we give them enough information to act on who that is,” Biden told reporters after the call. The call came on the heels of the latest major cyberattack against a U.S. company. REvil, a ransomware group believed to be in Russia, hit Florida-based IT software company Kaseya last week. Researchers have suggested that the hack affected between 1,500 to 2000 of the firm’s clients as well as likely thousands of more customers of those clients. The Kremlin says it has not received any official requests from U.S. […]
The post Biden again urges Putin to disrupt ransomware gangs operating inside Russia appeared first on CyberScoop.
Continue reading Biden again urges Putin to disrupt ransomware gangs operating inside Russia
Latest episode – listen now! Continue reading S3 Ep40: Kaseya breach, PrintNightmare 0-day, and hacking versus the law [Podcast]
Latest episode – listen now! Continue reading S3 Ep40: Kaseya breach, PrintNightmare 0-day, and hacking versus the law [Podcast]
Kaseya has decided to postpone bringing its IT service management (ITSM) platform back online after a ransomware attack until Sunday afternoon July 11, 2021, Eastern Standard Time. Previously, the company had committed to bringing both the software-as… Continue reading Kaseya Postpones Bringing ITSM Platforms Back Up
Last week cybercriminals deployed ransomware to 1,500 organizations that provide IT security and technical support to many other companies. The attackers exploited a vulnerability in software from Kaseya, a Miami-based company whose products help system administrators manage large networks remotely. Now it appears Kaseya’s customer service portal was left vulnerable until last week to a data-leaking security flaw that was first identified in the same software six years ago. Continue reading Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software