Three big cyberattacks, including yet another hit for LastPass

  • 28 February 2023
  • 6 replies
  • 54 views

  • Anonymous
  • 0 replies

Change your passwords because this time they got into the vault:

https://arstechnica.com/information-technology/2023/02/lastpass-hackers-infected-employees-home-computer-and-stole-corporate-vault/

US Marshalls and Dish also got hit:

https://abcnews.go.com/amp/US/us-marshals-service-hit-ransomware-attack/story?id=97505610

https://techcrunch.com/2023/02/27/dish-outage-reported-cyberattack/

I don’t know what’s going on lately, but the ransomware attacks are coming fast and strong.  Stay safe out there and make sure you have write-only backups!


6 replies

Userlevel 6
Badge +2

Ransomware attacks have become more common in recent years for a variety of reasons, including:
Profitability
Easy to deploy
Difficult to trace:Increasing reliance on technology

These, and other factors, have contributed to the growing prevalence of ransomware attacks. Individuals and organisations must take precautions to protect themselves from these types of attacks, such as regularly backing up important data, updating software, and implementing strong security measures.

https://www.upi.com/Top_News/US/2023/02/28/Marshals-Service-hit-with-ransomware-attack/4741677567338/

four vulnerabilities in Microsoft Azure services were vulnerable to server-side request forgery (SSRF) attacks. Services included Azure API Management, Azure Functions, Azure Machine Learning, and Azure Digital Twins. The impact of these SSRF vulnerabilities on Microsoft Azure Services could have been significant if left unpatched. Due to the swift action taken by Microsoft, these vulnerabilities were mitigated before they could cause any major damage.

https://purplesec.us/security-insights/microsoft-azure-ssrf-vulnerabilities/

Userlevel 4
Badge +3

It's always a good idea to change passwords on a regular basis and to use strong, difficult-to-guess passwords. To add an extra layer of security to your accounts, use two-factor authentication whenever possible.

The escalation of cyberattacks is attributed to more agile hackers and ransomware gangs who are focused on exploiting collaboration tools used by remote workers and schools and educational institutions that shifted to e-learning during the pandemic, as well as a significant increase in attacks on healthcare organizations.

Widening cyber skills gap and the increasing complexity of distributed networks have created the perfect storm for cybercriminals. The cloud migration trend has only made things worse, creating a wider attack surface for these malicious actors. Its high time for businesses to start considering data security seriously.

This reliance on the internet has its advantages and disadvantages . On one hand ,  internet simplifies life; on the other hand , it makes you more susceptible to threats from cyberspace. There have been 2.8 billion malware attacks so far this year , up 11% from 2021 , according to the Sonic Mid - year Cyber Threat Report 2022.

 

Userlevel 1
Badge +1

LastPass confirmed that it has suffered a  cybersecurity incident in which its development environment was accessed. This resulted in some snippets of  its code and proprietary technical documentation being stolen while customer data remained safe.

https://www.csoonline.com/article/3688922/hacked-home-computer-of-engineer-led-to-second-lastpass-data-breach.html

Reply