The Hacker News21h
Medusa Ransomware Uses Malicious Driver to Disable Anti-Malware with Stolen Certificates
Medusa ransomware uses ABYSSWORKER driver with stolen certificates to disable EDR and enable RDP access, risking data ...
VSCode extensions found downloading early-stage ransomware
Two malicious VSCode Marketplace extensions were found deploying in-development ransomware from a remote server, exposing ...
Microsoft signed a dodgy driver and now ransomware scum are exploiting it
Paragon Software has released a new driver, BioNTdrv.sys version 2.0.0, which fixes these flaws. Vulnerable versions of the driver have been added to Microsoft's Vulnerable Driver Blocklist so that ...
How to guard against a vicious Medusa ransomware attack - before it's too late
By following these seven tips from federal authorities, you can prevent Medusa from wreaking havoc on your life and business.
Rolling Out7d
How Medusa ransomware targets your inbox and VPN
Medusa ransomware is targeting Gmail, Outlook, and VPN users with advanced attacks. Learn how to protect your data before ...
Medusa ransomware using malicious driver as EDR killer
A Medusa ransomware campaign is using a malicious driver to disrupt and even delete endpoint detection and response (EDR) ...
Cybersecurity experts urge email users to take steps to guard against vicious ransomware scheme
A vicious ransomware called Medusa is picking up speed and a local cybersecurity expert has ways you can keep your data safe.
Medusa Ransomware Strikes 300+ Targets: FBI & CISA Urge Immediate Action to #StopRansomware
Medusa ransomware now operates as a RaaS model, recruiting affiliates from criminal forums to launch attacks, encrypt data, ...
Infosecurity Magazine1d
Albabat Ransomware Evolves to Target Linux and macOS
Trend Micro observed a continuous development of Albabat ransomware, designed to expand attacks and streamline operations ...
New SuperBlack ransomware exploits Fortinet auth bypass flaws
A new ransomware operator named 'Mora_001' is exploiting two Fortinet vulnerabilities to gain unauthorized access to firewall ...
CPO Magazine1d
Over 300 Critical Infrastructure Organizations Hit by Medusa Ransomware Attacks
The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory on the Medusa ransomware attacks impacting over 300 ...
Fortinet firewall bugs are being targeted by LockBit ransomware hackers
Cybersecurity researchers at Forescout found the threat actor is using two vulnerabilities in Fortinet firewalls, tracked as ...