Conti Ransomware Group Diaries, Part I: Evasion

Conti Ransomware Group Diaries, Part I: Evasion

A Ukrainian security researcher this week leaked several years of internal chat logs and other sensitive data tied to Conti, an aggressive and ruthless Russian cybercrime group that focuses on deploying its ...
BlackByte Stormous Ransomware

CISA, FBI Post Ransomware Alert Ahead of Holiday Weekend

The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have observed an increase in highly impactful ransomware attacks occurring on holidays and weekends—when offices are normally closed—in the United States as ...
Security Boulevard
Ransomware Gangs and the Name Game Distraction

Ransomware Gangs and the Name Game Distraction

It's nice when ransomware gangs have their bitcoin stolen, malware servers shut down, or are otherwise forced to disband. We hang on to these occasional victories because history tells us that most ...
CISA vulnerability cybersecurity Atlassian CISA

How (and Why) Hacker Forums Self-Moderate

“Everything in moderation,” the saying goes. But it may come as a surprise that this expression even seems to apply to many of the hacker forums littered across the dark web. On ...
Security Boulevard
ransomware RagnarLocker takedown

Where Did REvil Ransomware Go? Will it Be Back?

Speculation swirled over why the prolific and dangerous REvil ransomware went offline – blog, payment processing, all suddenly went kaput – it’s important not to lose sight of the bigger issues. While ...
Security Boulevard
Kaseya Ransomware Attack, PrintNightmare Zero-day, Kaspersky Password Manager Vulnerability

Kaseya Ransomware Attack, PrintNightmare Zero-day, Kaspersky Password Manager Vulnerability

Details on the Kaseya supply-chain and REvil ransomware attack, a new zero-day exploit called “PrintNightmare” affects all Windows versions before June, and how randomly generated passwords in a popular password manager were ...
CTO Perspective: Examination of the REvil Ransomware Attack

CTO Perspective: Examination of the REvil Ransomware Attack

By Satya Gupta, Founder and CTO, Virsec Over the July 4th weekend, the REvil ransomware syndicate hit software supplier Kaseya Ltd. and crippled more than 200 United States companies. The criminals took ...
SMBs, threats, shutdown SMBs cybercriminals business ransomware malware Kaseya 6 Ways Poor Cybersecurity Hurts Businesses

Kaseya Postpones Bringing ITSM Platforms Back Up

Kaseya has decided to postpone bringing its IT service management (ITSM) platform back online after a ransomware attack until Sunday afternoon July 11, 2021, Eastern Standard Time. Previously, the company had committed ...
Security Boulevard
Kaseya CEO Fred Voccola Addresses Cyberattack and Next Steps for VSA Customers

Kaseya CEO: “The impact of this incredibly sophisticated attack is very minimal”

Kaseya CEO Fred Voccola gives us the facts in an emotionally charged video posted on the company's official YouTube channel. Categories: Ransomware Tags: Fred VoccolaIT Completekaseyaransomwareremote monitoring and managementrevilREvil ransomwareRMMsodinSodinokibisodinokibi ransomware (Read ...
Veeam data Rezilion Spring4Shell Log4j vulnerabilities time Kaseya ransomware recovery REvil

Kaseya Starts Recovery After REvil Attack

Kaseya is now reporting the software-as-a-service (SaaS) instance of its Virtual System Administrator (VSA) platform will be back online sometime between 4:00 p.m. and 7:00 p.m. EST today. It expects the on-premises ...
Security Boulevard