https://safirsoft.com Up to 1,500 companies have been infected in one of the worst ransomware attacks ever

Supply chain attacks have surprising effects around the world. About 1,500 companies around the world have been infected with highly destructive malware, affecting software maker Kaseya for the first time. In one of the worst ransomware attacks ever, malware in turn used this access to Kaseya clients.

The attacker attacked shortly after noon in front of the US Independence Day holiday on Friday afternoon. Hackers affiliated with REvil, one of the most important ransomware gangs, exploited a zero-day vulnerability in Kaseya VSA's remote administration service, which the company says 35,000 customers use. REvil affiliates then used Kaseya Infrastructure Control to update malware to customers, especially small and medium-sized businesses. Escalation Continues

In a statement issued Monday, Casseh said about 50 of its customers are at risk. From there, 800 to 1,500 jobs run by Cassie clients have been infected, according to the company. Dark web site REvil claims that more than a million targets were infected in the attack, and the group is demanding $70 million for global decryption.

https://safirsoft.com So far 1,500 companies have been infected with one of the worst ransomware attacks ever Zoom

REvil site to remove image claiming hard drives with 500GB of locked data Updated . Ransomware groups usually remove information from their sites as a sign of good faith after ransomware conversations have begun. This image actually looks like this: https://safirsoft.com In one of the worst ransomware attacks, up to 1500 were made ever LoadingCybereason

" This is not a good sign that Beaumont Coin, a security expert and independent researcher, wrote: “The scope of ransomware in products widely used by managed service providers is virtually non-existent and shows the continued escalation of ransomware ranges – I wrote about earlier.” ">This mass attack has implications Surprise around the world. Swedish supermarket chain Kop was still struggling to recover on Tuesday after closing about half of its 800 stores with farms closed and self-service cash registers. Schools and kindergartens in New Zealand were also affected, as were some government offices in Romania. Germany's cybersecurity watchdog, BSI, said on Tuesday it had notified three affected IT service providers in Germany. The map below shows where the security company Kaspersky sees the infection.

https://safirsoft.com A maximum of 1,500 companies were infected in one case. One of the worst ransomware attacks ever LoadingCybereason

A software agent has been signed ransom With a trusted Windows certificate that uses the registrar name "PB03 TRANSPORT LTD". By digitally signing their malware, attackers are able to crack down on many security alerts that would appear if they were installed. Cybereason said that the certificate appears to have been used exclusively by the REvil malware that installed the attack.

To add secrecy, the attackers used a technique called DLL Side-Loading, which inserts a fake malicious DLL. In the WinSxS list for Windows so that the operating system loads the scam instead of the legal file. Currently, Agent.exe releases an older version of "msmpeng.exe" that is vulnerable to DLL sideloading, which applies to Windows Defender.

After running, the malware changes the firewall settings to detect local Windows systems. After that, it starts encrypting files in the system and displays the following ransom note:

https://safirsoft.com to 1500 companies that have been infected in one of the Worst ransomware attack ever LoadingCybereason

This is the latest example on a supply chain attack where hackers infect a reputable product provider with the aim of endangering key customers who use it. Discovered in December, the SolarWinds solution was used to deliver malware updates to 18,000 organizations using the company's network management tools. About nine federal agencies and 100 private organizations received repeated infections.

Anyone who suspects that their network has been affected in any way should investigate immediately. Kaseya has released a tool that VSA customers can use to detect infections on their networks. The FBI and the Cybersecurity and Infrastructure Security Agency have issued joint recommendations to Kaseya clients, especially if they are vulnerable.

Up to 1,500 companies have been infected in one of the worst ransomware attacks ever
up-to-1-500-companies-have-been-infected-in-one-of-the.html

https://safirsoft.com Google previews Pixel 6 with new updated Tensor SoC camera

Google previews Pixel 6 with new updated Tensor SoC camera

SoC "Whitechapel" Google "Google Tensor" is official, plus we have pictures!

Google has released an official "glimpse" of its upcoming flagship Pix...

https://safirsoft.com YouTube Premium Lite trial offers YouTube without ads for $7 per month

YouTube Premium Lite trial offers YouTube without ads for $7 per month

YouTube separates Europe's premium music features.

At $12 per month, YouTube Premium offers ad-free videos, background playback on phones, an...

https://safirsoft.com Vaccines, reopening and worker rebellion: The great technological row is back in office

Vaccines, reopening and worker rebellion: The great technological row is back in office

CEOs want workers back to their desks. For employees and other virus programs. Across the United States, the leaders of tech giants like Apple, Google...
https://safirsoft.com Brave.com, with the help of Google, squeezes malware

Brave.com, with the help of Google, squeezes malware

With a valid TLS certificate, faux Bravė.com can fool even the most secure of people. Malware that controls browsers and steals sensitive data.

...
https://safirsoft.com A privacy battle that Apple isn't fighting

A privacy battle that Apple isn't fighting

There are no browser-level privacy settings that California implements in Safari, iOS.

For at least a decade, privacy advocates have yearned ...

https://safirsoft.com Only 3G Kindles started their long and slow death this year

Only 3G Kindles started their long and slow death this year

3G 2021/2022 sunset affects even the eighth generation Kindle (2016).

On Wednesday, Amazon sent out an email notification to customers who pu...