BlazeGuard | Cybersecurity Newsroom

19 Feb

CISA Releases Decryptor Tool to Combat New ESXiArgs Ransomware Variant

After the U.S. Cybersecurity and Infrastructure Security Agency (CISA) released a decryptor for affected victims to recover from ESXiArgs ransomware attacks, the threat actors have bounced back with an updated version that encrypts more data.The emergence of the new variant was reported by a system administrator on an online forum, where another participant stated that files larger than 128MB...

18 Feb

The Rising Risks of Cryptocurrency Use: Exploring Enigma, Vector, and TgToxic

in Cyber Security, Cybersecurity

Comments

Suspected Russian threat actors have been targeting Eastern European users in the crypto industry with fake job opportunities as bait to install information-stealing malware on compromised hosts.The attackers "use several highly obfuscated and under-development custom loaders in order to infect those involved in the cryptocurrency industry with Enigma stealer," Trend Micro researchers Aliakbar...

17 Feb

VMware ESXi Server Ransomware Attack Evolves, Recovery Script Released

in Cyber Security, Cybersecurity, Ransomware, Security, Servers

Comments

The FBI and CISA have released a recovery script for the global ESXiArgs ransomware campaign targeting VMware ESXi servers, but the ransomware has since been updated to elude former attempts at remediation....

16 Feb

Wireless IIoT Device Vulnerabilities Pose Risk to Critical Infrastructure

in Cyber Security, Cybersecurity

Comments

A set of 38 security vulnerabilities has been uncovered in wireless industrial internet of things (IIoT) devices from four different vendors that could pose a significant attack surface for threat actors looking to exploit operational technology (OT) environments. "Threat actors can exploit vulnerabilities in Wireless IIoT devices to gain initial access to internal OT networks," Israeli...

15 Feb

Pakistan Targeted by Malicious Campaign from NewsPenguin Threat Actor

in Cyber Security, Cybersecurity

Comments

A previously unknown threat actor dubbed NewsPenguin has been linked to a phishing campaign targeting Pakistani entities by leveraging the upcoming international maritime expo as a lure. "The attacker sent out targeted phishing emails with a weaponized document attached that purports to be an exhibitor manual for PIMEC-23," the BlackBerry Research and Intelligence Team said.PIMEC, short for...

14 Feb

State-sponsored Threat Groups Ramp Up Ransomware-Like Attacks

in Cyber Security, Cybersecurity, Ransomware, Security

Comments

Sandworm Targets Ukraine and its Supporters In the last months of 2022, Russian Advanced Persistent Threat (APT) group Sandworm continued its data wiping attacks against Ukrainian organizations, but expanded its efforts to organizations from countries that are strong supporters of Ukraine, such as Poland, according to a new report by cybersecurity firm ESET. Sandworm is believed to operate as a unit inside Russia's military intelligence agency,...

Newsroom (Archive)

CISA Releases Decryptor Tool to Combat New ESXiArgs Ransomware Variant

VMware ESXi Server Ransomware Attack Evolves, Recovery Script Released

Wireless IIoT Device Vulnerabilities Pose Risk to Critical Infrastructure

Pakistan Targeted by Malicious Campaign from NewsPenguin Threat Actor

State-sponsored Threat Groups Ramp Up Ransomware-Like Attacks

Cloud Backup Feature for TOTP Codes Now Available on Google Authenticator App

Accounts left vulnerable to permanent compromise due to Google OAuth bug

How Fancy Bear Infected Routers Using an Old SNMP Bug

AI-generated YouTube videos used to distribute difficult-to-detect malware loader

Navigation

Connect with us on social