Using a known exploit to infect unmaintained systems, the WannaCry ransomware worm remains a study in preventable catastrophes. Yet many companies continue to ignore its lessons. Three years ago, the WannaCry ransomware worm quickly compromised hundreds of thousands of out-of-date, unpatched computers and servers, encrypting data on the systems and often shutting down operations at
The healthcare company has informed affected employees of a data breach on a single corporate server. Magellan Health, a Fortune 500 healthcare company, has begun notifying some employees that their personally identifiable information (PII) was compromised as the result of a phishing attack that also served as a prelude to a ransomware attack. According to
Investigations show Maze ransomware operators leave “nothing to chance” when putting pressure on victims to pay. Maze ransomware made headlines when it targeted IT services firm Cognizant in April. Incident response experts who investigated this and previous Maze attacks report new insights on ransomware tactics that could make it harder for businesses to defend themselves.
Criminals extorting large amounts of money from big enterprises pulled up the overall average significantly compared with the fourth quarter of 2019, Coveware says. The ransomware economy continues to boom even as the COVID-19 pandemic wreaks havoc on businesses around the world. New data from Coveware on ransomware attacks in the first quarter of this
Financial data is still in demand, but ransomware becomes the most popular way to try to cash in from compromised companies, according to Trustwave. For the first time, more cybersecurity incidents involved recovering from ransomware attacks rather than dealing with the fallout of stolen data — a sign that attackers are shifting their tactics, according to cybersecurity
Cognizant is working with cyber defense firms and law enforcement to investigate the attack, disclosed April 17. Cognizant, a major provider of IT services, confirmed late last week it was the victim of a Maze ransomware attack that caused service disruption for some of its clients. The company began to alert clients to the incident
Enterprise Vulnerabilities From DHS/US-CERT’s National Vulnerability Database CVE-2019-4762PUBLISHED: 2020-04-16 IBM MQ 9.0 and 9.1 is vulnerable to a denial of service attack due to an error in the Channel processing function. IBM X-Force ID: 173625. CVE-2020-4260PUBLISHED: 2020-04-16 IBM UrbanCode Deploy (UCD) 7.0.5 could allow a user with special permissions to obtain sensitive information via generic
What happened in Atlanta is worth studying because it was one of the earliest cases of a major city ransomware attacks and because it came out the other side stronger and more resilient. When I first flew to Atlanta in March 2018, the city was in crisis. It had been hit by a massive ransomware