A new NTLM relay attack called PetitPotam has been discovered that allows threat actors to take over a domain controller, and thus an entire Windows domain. Many organizations utilize Microsoft Active Directory Certificate Services, which is a public key infrastructure (PKI) server that can be used to authenticate users, services, […]
attack
Fashion retailer Guess discloses data breach after ransomware attack
American fashion brand and retailer Guess is notifying affected customers of a data breach following a February ransomware attack that led to data theft. “A cybersecurity forensic firm was engaged to assist with the investigation and identified unauthorized access to Guess’ systems between February 2, 2021 and February 23, 2021,” […]
REvil ransomware hits 1,000+ companies in MSP supply-chain attack
A massive REvil ransomware attack affects multiple managed service providers and over a thousand of their customers through a reported Kaseya supply-chain attack. Starting this afternoon, the REvil ransomware gang, aka Sodinokibi, targeted MSPs with thousands of customers, through what appears to be a Kaseya VSA supply-chain attack. At this […]
Code in huge ransomware attack written to avoid computers that use Russian, says new report
WASHINGTON — The computer code behind the massive ransomware attack by the Russian-speaking hacking ring REvil was written so that the malware avoids systems that primarily use Russian or related languages, according to a new report by a cybersecurity firm. It’s long been known that some malicious software includes this […]
Ransomware attack on Kaseya, a software firm, threatens businesses worldwide
James Martin/CNET Following recent ransomware attacks that took down a major gas pipeline and a major meat processor in the US, a new assault has surfaced, this time hitting a Miami-based company that provides tech-management tools to customers worldwide. Hundreds of companies, including a railway, pharmacy chain and grocery chain […]
Massive Qlocker ransomware attack uses 7zip to encrypt QNAP devices
Update 4/22/21: A bug was discovered last night that allowed victims to recover their 7zip password for free but was fixed soon after being discovered. You can find more info in the update below.Update 4/24/21: A frequently asked questions section has been added to the bottom of the article. A massive ransomware […]