ransomware attack Archives - AfricaBusiness.com

2Jun

By Africa BusinessNo Comments

Tech

Cisco Talos Finds Nearly 70% of Ransomware Attacks Result from Cybercrime Tools Widely Available for Purchase

Known as ‘Commodity Trojans’, ransomware attacks often available on the Dark Web are effective against systems with patching and endpoint vulnerabilities. Between late 2020 and early 2021, actors targeted industries including education, healthcare, energy and utilities, government, and more. Cisco Talos Incidence Response has been responding to a growing number of incidents involving the Microsoft Exchange vulnerabilities from Hafnium and has engaged in several incident response engagements in which organizations unknowingly downloaded trojanized updates to the widely deployed SolarWinds. For the seventh quarter in a row, Cisco Talos Incident Response (CTIR) has observed ransomware dominating the threat landscape. The top variants between November 2020 and January 2021 were Ryuk and ...

Sophos Publishes 3-Part Series on the Realities of Conti Ransomware

Research Details the Day-by-Day Unfolding of a Human-Operated Conti Attack Using Fileless Ransomware, Background on the Ransomware’s Behaviors, and Defender Advice In a new three-part series of articles, Sophos researchers and incident responders unveil what really happens when attackers break into an organization’s network with the intention of stealing data and launching a Conti ransomware attack. Conti is a human-operated “double extortion” ransomware. The attackers steal data from their targets before encrypting it, and then threaten to expose the stolen information on the “Conti News” site if the organization doesn’t pay the ransom. Sophos’ 24/7 incident response team, Sophos Rapid Response, was called in to contain, neutralize and investigate the incident, which unfolded over five ...

Cisco Reveals Top Cybersecurity Threats of 2020

Defending Against Critical Threats Report identifies migration to remote working and evolution of ransomware as key contributors towards diverse criminal activity Cisco has revealed the findings of its Defending Against Critical Threats Report, noting changes in criminal activity during 2020 and new methods of exploitation, arising as a result of the pandemic. During a year in which transitioning to digital infrastructures became essential for all, Cisco explores the ongoing complexity and evolution of cyber threats, to inform organizations and empower stronger decision-making. Increased Vulnerabilities with Remote Working Cisco Umbrella – a cloud-driven Secure Internet Gateway – examined traffic running through its DNS servers, identifying mid-March 2020 as a peak period of increased remo...