technology – Page 5 – Cybersecurity Today

Ransomware attack hikes the price on decryption

“REvil is increasing ransoms for Kaseya ransomware attack victims” via Lawrence Abrams

“The REvil ransomware gang is increasing the ransom demands for victims encrypted during Friday’s Kaseya ransomware attack.

When conducting an attack against a business, ransomware gangs, such as REvil, typically research a victim by analyzing stolen and public data for financial information, cybersecurity insurance policies, and other information.

Using this information, the number of encrypted devices, and the amount of stolen data, the threat actors will come up with a high-ball ransom demand that they believe, after negotiations, the victim can afford to pay.”

More detail here: https://www.bleepingcomputer.com/news/security/revil-is-increasing-ransoms-for-kaseya-ransomware-attack-victims/

Kaseya VSA Ransomware Attack – Press Release 02/07/2021

Kaseya is urging MSPs to immediately shut down on-premises VSA servers amid a potential cyberattack that may be targeting the RMM (remote monitoring …
Kaseya VSA Ransomware Attack – Press Release 02/07/2021

Personal information of 700 million LinkedIn users is now up for sale online

In what appears to be a massive data breach, the personal information of around 700 million LinkedIn users has been leaked on a hacker forum. The …
Personal information of 700 million LinkedIn users is now up for sale online

Microsoft Gives Guidance to Mitigate PrintNightmare

“Microsoft shares mitigations for Windows PrintNightmare zero-day bug” via Sergiu Gatlan

“Microsoft has provided mitigation guidance to block attacks on systems vulnerable to exploits targeting the Windows Print Spooler zero-day vulnerability known as PrintNightmare.

This remote code execution (RCE) bug—now tracked as CVE-2021-34527—impacts all versions of Windows per Microsoft, with the company still investigating if the vulnerability is exploitable on all of them.

CVE-2021-34527 allows attackers to take over affected servers via remote code execution with SYSTEM privileges as it enables them to install programs, view, change, or delete data, and create new accounts with full user rights”

For more detail: https://www.bleepingcomputer.com/news/security/microsoft-shares-mitigations-for-windows-printnightmare-zero-day-bug/