Cybersecurity Starts in the Boardroom
This post was first made on 14 October 2022 Original Post Threat actors do not care who they infect as long as they pay up. Now fake anti-virus and security updates for Windows 10 have been circulating and deploying Magniber ransomware – the zip files contain JavaScript that initiates the …
Continue reading “Ransomware targets home users – with some advice for you – UPDATED”
We often find problems with client configurations when we take over jobs, particularly when less-technically-able client try to do-it-themselves. If anyone needs an example as to why getting things set up correctly is difficult, Microsoft made a mistake with a server config and exposed some of their client’s information: Microsoft …
The US government Cybersecurity and Infrastructure Security Agency (CISA) has issued security advisories for Zimbra and Oracle: CISA Updates Advisory on Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite | CISA Oracle Releases October 2022 Critical Patch Update | CISA
Fall back and use your ransomware resilient back-up to recover your encrypted information – and hope that your data classification and segregation has protected your most sensitive information from exfiltration and exposure in the public domain. Or you could hope that the Dutch police have recovered the ransomware decryption key …
Continue reading “What can you do if you get infected by ransomware?”
Here is some research by Tomer Bar, Director of Security Research at SafeBreach on how they detected some backdoor malware, which was originally designated fully undetectable (FUD) powershell backdoor, but obviously now it is detected. It all starts with a malicious Microsoft Word document, that includes a macro that starts …
