I have written a lot about the fact that many cyber attacks include an element of social engineering, to tease the victim into lowering their guard and doing what the threat actor wants. Here is an excellent example of that, described by Xavier Mertens on SANS Internet Storm, where the …
GoDaddy security breaches
GoDaddy is one of the world’s largest web hosting companies – we have clients with them, although we do not use them ourselves. GoDaddy has reported that the same threat actor breached the GoDaddy security three times in three years and accessed customer and employee information, installed malware and redirects …
Royal Mail ransomware attack – no data exposed yet…
Following the ransomware attack earlier this year, the deadline for Royal Mail to pay the LockBit ransomware gang has passed and the Gang has not released any of the stolen data… yet. Experts think this s because they have not yet given up the hope of monetising the attack: LockBit’s …
Continue reading “Royal Mail ransomware attack – no data exposed yet…”
National Cyber Security Centre Threat Report 10 February 2023
Threat Report 10th February 2023 – NCSC.GOV.UK
ESXiArgs Ransomware Recovery Advice
Following the discovery of a coding flaw in the ESXiArgs Ransomware, the US government Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have released a document outlining how to use the various scripts and processes to recovery data after an attack: CISA and FBI Release ESXiArgs Ransomware Recovery Guidance …