They steal them: Email marketing firm hacked to steal crypto-focused mailing lists (bleepingcomputer.com) Email marketing firms are prime targets.
We have clients with impacted devices – so our team has been out checking and patching
We practice what we preach: DrayTek routers offer great value and functionality to many micro to medium businesses, so a flaw with them could be an issue to an organisation without IT or cybersecurity support: Critical RCE vulnerability impacts 29 models of DrayTek routers (bleepingcomputer.com)
Ransomware, the how and where and what your first step is in defending against it…
Here are a couple of stories showing that ransomware hits large and small organisations: Luxembourg energy companies struggling with alleged ransomware attack, data breach – The Record by Recorded Future At least 34 healthcare orgs affected by alleged ransomware attack on OneTouchPoint – The Record by Recorded Future The Bromford …
A combination attack that exploits the Log4j vulnerability and VMware to deliver ransomware
I have published a lot on the log4j and log4shell exploits and vulnerability. CISA issued a special warning about the long term impact of the issue: CISA advisory for continued exploitation of Log4Shell in VMware Horizon Systems – Smart Thinking Solutions Here is another real world example of the exploitation …
The money involved in ransomware
Research has shown that payments to threat actors, demanded by ransomware, has dropped, but the double action of stealing the data and threatening exposure and encrypting that data at source is increasing: Ransom payments fall as fewer victims choose to pay hackers (bleepingcomputer.com) This next story wasn’t really surprising, that …
