As was reported earlier, MSP vendor Kaseya was hit by a massive ransomware attack from REvil (Sodinokibi) at the end of last week. The hackers exploited a 0-day vulnerability in the company’s product (VSA) and attacked...
Author - Emma Davis
REvil ransomware attacks MSP solution provider Kaseya
Late on the last Friday evening, on the eve of July 4th, the REvil (Sodinokibi) ransomware attacked and gained access to the infrastructure of the MSP provider Kaseya, and implemented a malicious update into the VSA program, as a...
Problem PrintNightmare received a new CVE ID but did not receive a patch
This week, reports arrived that a PoC exploit for a dangerous Windows Print Spooler problem (spoolsv.exe), which researchers dubbed PrintNightmare, was found on the network. This bug was originally identified as CVE-2021-1675 and...
One of the developers of Gozi malware arrested in Colombia
Colombian police in the country’s capital, Bogota, have arrested Romanian citizen Mihai Ionut Paunescu, supposedly one of the developers of Gozi malware. December 2012, Paunescu was already arrested in Romania, and in...
Hackers Erased Data from WD My Book Live Devices through 0-Day Vulnerability
Last week, attacks on Western Digital NAS removed all files from WD My Book Live devices, while users could not log in through a browser or app, receiving an “Invalid Password” error. the developers asked the NAS...
Mercedes-Benz reports data breach of 1.6 million customers
The American division of Mercedes-Benz has reported a data breach affecting some of the company’s customers. incident affected 1.6 million records, which included customer names, addresses, email, phone numbers and some...
Someone Erases Data from WD My Book Live and Manufacturer Advises Unplugging Devices
Western Digital NAS owners worldwide complain that all files have been deleted from their WD My Book Live devices, and they can no longer log in through a browser or app, receiving an “Invalid Password” error. Trying...
Dangerous vulnerability in SonicWall products was not fully fixed
In the fall of 2020, Tripwire experts spoke about the dangerous vulnerability CVE-2020-5135 found in SonicOS, which runs the SonicWall Network Security Appliance (NSA) devices. , such equipment is used as firewalls and SSL VPN...
Scammers impersonate DarkSide hack group
Scammers impersonate the already defunct DarkSide hack group and are sending ransom letters to companies in the energy and food sectors, Trend Micro reports. is unclear why the imitators chose these particular industries, but it...
Ransomware offers stolen data to competitors of their victims
Bleeping Computer reports about the unusual activity of the underground marketplace Marketo, which offers stolen data to competitors of ransomware victims and generally specializes in selling stolen information. administration of...