The security firm Intezer reported it had successfully shut down 15 active ransomware campaigns using the eCh0raix or QNAPCrypt variant with denial of service attacks. NAS servers normally store large amounts of important data and files, which make them a valuable target for attackers and especially a viable target for ransomware campaigns. In a rare […]

In a rare occurrence, the American National Security Agency (NSA) has published a statement urging people to update their older Windows systems to protect against the BlueKeep vulnerability. The NSA referenced “growing threats” and noted that BlueKeep “is the type of vulnerability that malicious cyber actors frequently exploit through the use of software code that […]

Under very specific conditions, code running in a Docker container could access files anywhere on a server, according to a new CVE. In an unusual progression of events, the vulnerability and exploits have been disclosed before patches are available. The vulnerability, designated CVE-2018-15664, was discovered by researcher Aleka Sarai. A flaw in the Docker “cp” command, which […]

The NamPoHyu ransomware is doing things differently by searching for accessible Samba servers, brute forcing the passwords, and then remotely encrypting their files and creating ransom notes. A ransomware family was recently spotted targeting vulnerable Samba servers: NamPoHyu Virus aka MegaLocker Virus. NamPoHyu Virus is unlike typical ransomware families that are delivered locally and launched as executables. Instead, […]

On April 9, Windows released its latest update which seems to be causing some problems with anti malware software. As of time of publication the brands affected by the patch are Sophos, Avira, ArcaBit, Avast, and most recently McAfee. Windows April 9th Patch Tuesday   Windows 7, 8.1, Server 2008 R2, Server 2012, and Server […]