This is an explanation of yet another flavor of ransomware, this time leveraging Powershell in the exploit. This has therefore generated another defensive layer to consider in your fight against infection.
Enjoy this interesting conversation on threat proliferation and ransomware from the team at ThreatPost.
This is yet another significant attack of ransomware against a medical provider, in this case a hospital system in the Washington, DC / Baltimore area.
Please note the new patches released by Google as well as the expansion of their bug bounty program.
Both Oracle and Cisco released patches in the last couple of days, though Oracle’s patches are considered out-of-cycle and critical. Cisco’s patches are part of their standard semi-annual IOS security advisory notice.
Ironic for sure, but this breach makes sense simply because of how rich the target environment is. Verizon has a strong team of IT Security professionals, so I feel confident this will be handled appropriately and expeditiously.
This is yet another example of a well-crafted phishing attack that has resulting in the compromise of significant PII. These issues are not combated by technical controls alone. Organizations must dedicate resources to effective user awareness training and design policies and procedures that allow for proper checks and balances. IT can not solve all problems.