The more significant issue may involve stolen data, as the Netwalker operators demand $4.5 million for the decryptor and for not releasing the stolen information.<\/p>\n
Datacenter providers and MSPs remain prime targets for ransomware attacks. Their systems often host or interconnect to many end-customer systems. Stealthy approaches that hide from antivirus tools are often used, according to a report from Huntress Labs.<\/p>\n
IT service providers and consulting firms were issued warnings about these ongoing attacks by the US Secret Service and other government agencies. Ransomware threat operators are progressively targeting point-of-sale (POS) systems. They often use business email compromise (BEC) and ransomware attacks to infiltrate networks.<\/p>\n
Google Advanced Protection Users Now Get Scans for Malicious Files<\/h2>\n
Seeking to protect high-profile people who are likely to be targeted by online attacks, The new feature adds to other safeguards available that protect Google accounts for public figures, such as activists, politicians, journalists, and others. Two physical security keys are required to use the Advanced Protection program, with one being a backup.<\/p>\n Two distinct Voice over IP (VoIP) software switches (softswitches) are the target of some peculiar Linux malware. If compromised, they may allow cybercriminals access to a user's phone data<\/a>. A softswitch that is compromised may allow a cybercriminal to exfiltrate private information. It can include call record details that have attached metadata. For example, the metadata may have caller and callee IP addresses, fees, other data, and the call's starting time and duration. Currently, it is not known how the malware is being deployed. It is assumed that the hackers are possibly exploiting a vulnerability or using a brute-force attack.<\/p>\n Academic institutions are being urged to ensure that their networks are resilient enough to protect them against the new string of ransomware attacks making the rounds. This warning was issued by the UK's National Cyber Security Centre (NCSC) \u2013 the cyber arm of GCHQ. It comes following a recent spate of hackers targeting universities during August<\/a>.<\/p>\n The NCSC has already monitored several ransomware attacks against universities, where varying amounts of damage occurred, depending on the level of cybersecurity the institutions had in place.<\/p>\n \"This criminal targeting of the education sector, particularly at such a challenging time, is utterly reprehensible,\" said Paul Chichester, director of operations at the NCSC. Universities have been advised to adopt some new cybersecurity protocols to reduce the severity of ransomware attacks.<\/p>\n These suggestions include securing RDP services with multi-factor authentication<\/a>, effective vulnerability management, patching<\/a>, installing antivirus software<\/a>, and ensuring staff and students are aware of the risks posed by phishing emails<\/a>.
\nGoogle launched its Advanced Protection program<\/a>. It has extra security features in Chrome and is now launching a new one. Those enrolled can send files they are concerned about directly to be scanned by Google\u2019s Safe Browsing malware-detection technology.<\/p>\nPeculiar Linux Malware Targeting VoIP Switches<\/h2>\n
\nAccording to ESET, a Slovakia-based antivirus and firewall vendor, the malware attacks Chinese-made software switches, such as the Linknat VOS2009 and VOS3000.<\/p>\n![\"CTA\"](\"https:\/\/no-cache.hubspot.com\/cta\/default\/5442029\/4a146d91-d63d-4e82-9aab-1f5f0c43f780.png\")
<\/a><\/span><\/span><\/div>\n
\nIn order to steal the metadata, the malware queries internal MySQL databases that are used by the softswitch.<\/p>\n![\"CTA\"](\"https:\/\/no-cache.hubspot.com\/cta\/default\/5442029\/dcb611f1-612b-448d-8afd-7e3fea1fccc0.png\")
<\/a><\/span><\/span>\n<\/div>\n![\"Webinar](\"https:\/\/www.msp360.com\/resources\/wp-content\/uploads\/2020\/03\/Ransomware_-Prevent-or-Recover-1.png\")
<\/div>\n<\/div>\nUniversities Under New Ransomware Attacks<\/h2>\n
\nUp-to-date and tested offline backups for universities have also been recommended.<\/p>\nSunCrypt Ransomware Hits University Hospital in NJ<\/h2>\n