Hosted on MSN

A critical flaw in cPanel has been a wide-open backdoor since February — 44,000 servers are already encrypted with 'Sorry' ransomware

A single missing authentication check in cPanel, the control panel that underpins millions of shared hosting accounts worldwide, has given ransomware operators a direct path to encrypt entire servers ...
SecurityWeek

OnyxC2 Stealer Offers Cybercriminals Enterprise-Grade Theft for $250 a Month

OnyxC2 is a sophisticated malware-as-a-service platform that delivers stealthy credential theft, remote control, and ...
Bleeping Computer

TrickBot cybercrime group linked to new Diavol ransomware

FortiGuard Labs security researchers have linked a new ransomware strain dubbed Diavol to Wizard Spider, the cybercrime group behind the Trickbot botnet. Diavol and Conti ransomware payloads were ...
Dark Reading

Encrypted Traffic, Once Thought Safe, Now Responsible For Most Cyberthreats

Once upon a time, encrypted traffic was considered the safe, secure option for browsing and doing business online. However, going back to December 2013, the Google Transparency Report shows just 48% ...
CSOonline

New variant of the IceFire ransomware targets Linux enterprise systems

Traditionally known to target only Windows systems, the new Linux version of the IceFire ransomware exploits an IBM Aspera Faspex file-sharing vulnerability, according to SentinelLabs. A novel Linux ...
Bleeping Computer

GitHub-Hosted Malware Targets Accountants With Ransomware

Threat actors ran a malvertising campaign on the Russian Yandex.Direct advertising network starting October 2018 to disseminate a malware cocktail designed to encrypt victims' data and steal ...