CyberSec Roundup
A synopsis of the Latest Cybersecurity News
Acer Hit with Largest Ransom Ever
Acer, the multinational Taiwanese computer company was hit with a ransomware attack by the REvil group. The group is demanding a $50 million ransom, which is the highest ever from a ransomware operator. Acer has not yet confirmed the nature of the attack, however, REvil has posted Acer’s stolen information on their auction site. There is a possibility that the ransomware infected Acer’s network via exploitation of the Exchange Server vulnerability.
Operation Diànxùn
The McAfee Advanced Threat Research Strategic Intelligence team has discovered an active espionage operation aimed at telecommunication companies called Operation Diànxùn. The APT groups are using spear-phishing techniques to target employees in this sector, where if successful, infect their machines with malware. The APT groups, which appear to be of Chinese origin, are using the access to gather information and secrets about 5G technologies.
FBI Issues Warnings around Malware
The FBI recently issued multiple warnings about the increase of phishing emails from malicious actors who are trying to infect systems with PYSA and Trickbot. Machines infected with Trickbot can be used to deliver ransomware such as PYSA. Organizations need to ensure their employees are vigilant about what emails they open and need to ensure the latest security patches are being used in their environment.
By: David Pinder
IT & Security Consultant
Certified Ethical Hacker