MOVEit Transfer and MOVEit Cloud customers experienced data theft attacks through the exploit of critical vulnerabilities beginning at the end of last month. High profile organisations across the UK and USA suffered massive data breaches as a result. Ongoing investigation into these attacks have resulted in three vulnerabilities being identified and patched by Progress […]
Critical Flaws Exploited in MOVEit Transfer Data Theft Read More »
EvilExtractor is an info stealer malware tool designed for data theft attacks on Windows operating systems. Researchers at Fortinet’s threat research group FortiGuard Labs have published an analysis of this tool detailing the attack method for this malware, and its impact on its victims. The research concluded that although there are no specific industries targeted
EvilExtractor Sold as ‘Educational Tool’ is Info Stealer Read More »
The threat actor known as Vice Society, a ransomware gang known for their attacks against the education sector in the USA, has recently been found to use a custom Microsoft PowerShell (PS) script for exfiltrating data from their victims. This threat actor previously used PS scripts staged on a domain controller to perform a range
Vice Society Use Automated Data Exfiltration Read More »
Cyber criminals are actively targeting a two-year-old vulnerability in VMware ESXi servers in a large-scale ransomware attack campaign. This is not a zero-day flaw, and a patch has been available since it was identified in 2021, however some customers have not installed the latest security updates but are continuing to use the products in an
Unpatched VMware ESXi Server Ransomware Attack Read More »
The cyber security challenges faced by organisations last year can give hints towards the way cyber crime is evolving this year. Ransomware has established itself as a constant threat, and is now available on demand through ransomware-as-a-service models, phishing events have increased, with more sophisticated landing pages, and widespread flaws such as Log4j continue to
Preparing for the Cyber Security Threats of 2023 Read More »
A new ransomware tool called AXLocker is being used by attackers to encrypt files and steal Discord account tokens. A large community of cryptocurrency and NFT owners use Discord to connect with others who have a similar interest or portfolio. Discord uses authentication tokens which are saved to the computer when a user logs in,
AXLocker Ransomware Steals Discord Account Tokens Read More »
The threat group tracked as DEV-0832 by Microsoft’s security threat intelligence analysts, also known as Vice Society, are a group of cyber criminals that are thought to have been active since at least June 2021. They have been credited for ransomware and extortion campaigns across the world but have mainly focused on US-based targets. The
Vice Society: Opportunistic Ransomware Group Read More »
Ransomware is the biggest cyber threat for UK organisations according to the National Cyber Security Centre (NCSC), with the number of different types of ransomware doubling this year already, from 5,400 in late 2021, to 10,666 after just six months of 2022. A report by Fortinet suggests this rise could be due to the development
What is Zeppelin Ransomware? Read More »
On 16:10 on Friday 8th April 2022 Russia attempted to repeat their 2016 cyberattack against the Ukrainian power grid – however this time they were foiled. Security firm ESET and the Ukraine Computer Emergency Response Team CERT-UA report how they foiled the attack from the Russian Sandworm APT group which attempted to deploy malware targeting
Russian hack of Ukraine power grid fails Read More »
This week the NCSC issued a warning of the evolving risks posed by Ransomware, with increasingly sophisticated techniques being used to extort money from businesses around the world. The National Cyber Security Centre (NCSC) along with the USA’s CISA and Australia’s ACSC have produced a joint cyber security advisory on the increased globalised threat of
The evolving risks from Ransomware Read More »
SecureTeam Ltd,
Kemp House, 152 City Road,
London,
EC1V 2NX
10257784
GB 249480968
SecureTeam Ltd, Kemp House, 152 City Road,
London, EC1V 2NX
Mon – Fri: 09:00 – 17:00
Company Number: 10257784
VAT Registration No: GB 249480968
© SecureTeam 2023. All rights reserved.