archiversSecurity measures for handling archive files in organizations
Archives are being used in targeted phishing and other attacks on organizations. What tools, settings, and policies can mitigate the threat?
ransomware
170 articles
threatsTarot and cyberthreats: a new Trojan for fans of the supernatural
New malware targets magic enthusiasts — sending stolen data to an “astral cloud server”.
A ransomware attack through an IP camera
Fending off ransomware attacks that exploit corporate IoT devices.
Fog ransomware publishes victim’s IP-addresses
Cybercriminals behind the Fog ransomware publish leaked data along with the IP addresses of attacked computers.
vulnerabilitiesThree VMware vulnerabilities: key risks and urgent patches
Reasons for updating your ESXi infrastructure ASAP, and enterprise threats that VM escape poses.
Six Microsoft vulnerabilities being actively exploited
Microsoft’s March Patch Tuesday fixes several vulnerabilities that have already been used in the wild. Details are not clear at the moment, but it’s worth installing the patches ASAP.
UnitedHealth ransomware attack
A year after the ransomware attack on healthcare giant UnitedHealth Group, we’ve compiled all publicly available information about the incident and its aftermath.
anti-ransomwareRansomware: the most notable attacks of 2024
$3 billion worth of damage to healthcare insurance giant, schools closed, soccer club players’ data leaked, and other ransomware incidents in 2024.
ShrinkLocker ransomware employing BitLocker for encryption
Our experts have discovered ransomware they’ve dubbed “ShrinkLocker”, which encrypts infected computers’ drives using BitLocker — a utility built into Windows.
Critical vulnerability exploit in GoAnywhere MFT
Time to update Fortra GoAnywhere MFT: an exploit has been developed for a critical vulnerability that allows attackers to bypass authentication and create admin accounts.
Three common attacks on Linux in homes
Even if you don’t know it, you probably have devices running Linux at home — and they need protection too! Here are three Linux threats that even IT professionals often forget about.
UEFIMSI leak: tips for users, organizations, and developers
Now anyone can sign device firmware with MSI private keys. This represents a long-term persistent risk to be considered by all users.
How cybercriminals launder dirty crypto
Crypto mixers, nested exchanges, cash-out and other crypto-laundering methods used by ransomware operators.
Attacks on virtualization systems and Linux servers
Linux and ESXi-based systems are increasingly falling victim to ransomware attacks. So how can you protect your servers?
CVE-2023-28252 zero-day vulnerability in CLFS
Kaspersky experts discover a CLFS vulnerability being exploited by cybercriminals.
Five key cybersecurity lessons for your CEO
Information security measures are far more effective when supported by top management. How to get this support?
ChronicleThe chronicle of WannaCry
Security evolution: The large-scale, but short-lived ransomware epidemic of 2017.
Andariel attacks with DTrack and Maui
The Andariel group attacks companies with several malicious tools.