The US Cybersecurity and Infrastructure Security Agency has and occasional series of advisories it issues, often with other US governmental agencies, looking in depth at various cyber-criminals and ransomware attacks and methodologies, to help professionals who have to deal with these threats. Here is the latest: StopRansomware – Daixin Team …
Double jeopardy Double extortion
The BlackByte, ransomware-as-a-service (RaaS) group has added exfiltration of information from compromised sites as one of its services – adding another malicious function that less technical cyber-gangs can now access: BlackByte ransomware affiliate also steals victims’ data • The Register The malware agent called Exbyte, uploads the stolen information to …
Check your VMware is patched and up-to-date or according to Ars Technica you will get a Halloween surprise
There is a particularly nasty exploit going around the will according to an article on Ars Technica, install a “witch’s brew of malware” on vulnerable systems: VMware bug with 9.8 severity rating exploited to install witch’s brew of malware | Ars Technica The patch for CVE-2022-22954 is out, just get it …
Cisco Security Updates
The US Cybersecurity and Infrastructure Security Agency has released a security advisory for Cisco software: Cisco Releases Security Update for Cisco Identity Services Engine | CISA
A phishing email leads to a £4.4m fine
I write a lot about phishing emails and social engineering attacks, because it is probably the way threat actors could most easily get malware inside your defences and from there compromise your security, your information and ultimately your wallet! The Berkshire based construction company, Interserve Group Ltd, with an employee …
