Sophos – Page 38 – PossibleThreat Articles

Beware bad passwords as attackers co-opt Linux servers into cybercrime

June 21, 2023 0 Comments Botnet, cryptocurrency, cryptojacking, DDoS, malware, password guessing, ssh, xmrig, zombie malware

Credit to Author: Paul Ducklin| Date: Wed, 21 Jun 2023 17:50:32 +0000

Did you prevent password-only logins on your SSH servers? On ALL of them? Are you sure about that?

Security Sophos

The State of Ransomware in Manufacturing and Production 2023

June 21, 2023 0 Comments manufacturing, products & services, Ransomware, research, solutions, Vulnerabilities

Credit to Author: Doug Aamoth| Date: Wed, 21 Jun 2023 12:12:41 +0000

Get insights into real-world ransomware experiences – including the frequency, costs, and root causes of attacks – in our latest annual survey of the manufacturing and production sector.

Security Sophos

“The Ransomware Documentary” – brand new video series from Sophos starting now!

June 21, 2023 0 Comments Ransomware

Credit to Author: Sally Adam| Date: Wed, 21 Jun 2023 13:00:19 +0000

Get the full 360-degree view of ransomware

Security Sophos

Update 4: Information on MOVEit Vulnerabilities CVE-2023-34362, CVE-2023-35036, and CVE-2023-35708

June 20, 2023 0 Comments cve-2023-34362, cve-2023-35036, cve-2023-35708, dev-0950, Exploit, featured, fin11, moveit, progress software, ta505, threat research, vulnerability

Credit to Author: Christopher Budd| Date: Mon, 05 Jun 2023 21:50:09 +0000

Users of the file-transfer package should apply patches immediately and check for indications of possible compromise

Security Sophos

ASUS warns router customers: Patch now, or block all inbound requests

June 20, 2023 0 Comments asus, Patch, rce, router, vulnerability

Credit to Author: Paul Ducklin| Date: Tue, 20 Jun 2023 16:14:45 +0000

“Do as we say, not as we do!” – The patches took ages to come out, but don’t let that lure you into taking ages to install them.

Security Sophos

Megaupload duo will go to prison at last, but Kim Dotcom fights on…

June 19, 2023 0 Comments dotcom, file locker, kim dotcom, Law & order, megaupload

Credit to Author: Paul Ducklin| Date: Mon, 19 Jun 2023 16:59:00 +0000

One, sadly, has died, and two are heading to prison, but for Kim Dotcom, the saga goes on…

Security Sophos

Update 2: Information on MOVEit Vulnerabilities CVE-2023-34362, CVE-2023-35036, and CVE-2023-35708

June 16, 2023 0 Comments cve-2023-34362, cve-2023-35036, cve-2023-35708, dev-0950, Exploit, featured, fin11, moveit, progress software, ta505, threat research, vulnerability

Credit to Author: Christopher Budd| Date: Mon, 05 Jun 2023 21:50:09 +0000

Users of the file-transfer package should apply patches immediately and check for indications of possible compromise

Security Sophos

Update 2: Information on MOVEit Vulnerabilities CVE-2023-34362 and CVE-2023-35036

June 16, 2023 0 Comments cve-2023-34362, dev-0950, Exploit, featured, fin11, moveit, progress software, ta505, threat research, vulnerability

Credit to Author: Christopher Budd| Date: Mon, 05 Jun 2023 21:50:09 +0000

Users of the file-transfer package should apply patches immediately and check for indications of possible compromise

Security Sophos

MOVEit mayhem 3: “Disable HTTP and HTTPS traffic immediately”

June 15, 2023 0 Comments moveit, progress, sql injection, vulnerability

Credit to Author: Paul Ducklin| Date: Thu, 15 Jun 2023 22:10:18 +0000

Twice more unto the breach… patch being tested, in the meantime, shut down web access.

Security Sophos

S3 Ep139: Are password rules like running through rain?

June 15, 2023 0 Comments bust, Cybercrime, Hacking, Law & order, malware, Microsoft, Naked Security Podcast, Podcast

Credit to Author: Paul Ducklin| Date: Thu, 15 Jun 2023 16:43:49 +0000

Latest episode – listen now! (Full transcript inside.)