The company did not confirm whether the ransomware attack was executed via one of its Microsoft Exchange servers, but several cyber leaders commented on a potential connection to the vulnerabilities exploited by multiple actors.
CISA’s acting executive director said “there are literally thousands of compromised servers that are currently patched,” with system owners that think they’re in the clear when they’re not.
FBI Director Christopher Wray speaks to a group in Washington, D.C. The FBI recently reported that total U.S. losses from cybercrime topped $4.1 billion in 2020. Today’s columnist, Glenn Mulvaney of Clumio, says while ransomware has become a hot-button issue, companies also need to focus on viruses, DDoS attacks, cryptojacking, and securing the cloud.
The money has never been better, but there are signs that increasingly aggressive responses from law enforcement are taking a toll.
Deep Instinct announced that it would back its product with a performance guarantee that delivers false positivity rates of less than 1 percent, plus a ransomware warranty of up to $3 million per company for a single breach.
Microsoft confirmed “a new family of ransomware being used after an initial compromise of unpatched on-premises Exchange Servers,” via its Security Intelligence Twitter account. The ransomware, called DoejoCrypt or DearCry, appears to be the latest threat associated with not patching the Hafnium Exchange Server vulnerabilities Microsoft first announced last week. DoejoCrypt was first noticed on…
Molson Coors reported a systems outage caused by a cybersecurity incident that delayed and may continue to disrupt parts of the company’s business, including its brewery operations, production and shipments.
Cognizant reportedly spent up to $70 million to remediate a Maze ransomware attack. Today’s columnist, Jerome Robert of Alsid, offers a fictitious account of what motivated the Maze operators and theorizes why they closed shop.
If ransomware and data exfiltration attacks that targeted hospitals and vaccine researchers during the pandemic signaled a cyber hygiene crisis in health care, the SolarWinds supply chain attack demonstrated just how deep the problem goes.
The program is designed to be an educational tool for testing anti-virus protections; however, it’s possible that cybercriminals could adopt and modify the code in order to launch their own attacks.
