Lucene search
K

6 matches found

ICS
ICS
added 2024/02/29 12:0 p.m.36 views

#StopRansomware: Phobos Ransomware

Actions to take today to mitigate Phobos ransomware activity: 1. Secure RDP ports to prevent threat actors from abusing and leveraging RDP tools. 2. Prioritize remediating known exploited vulnerabilities. 3. Implement EDR solutions to disrupt threat actor memory allocation techniques...

7.2AI score
Exploits0References193
hivepro
hivepro
added 2022/12/05 1:46 p.m.14 views

Multiple Ransomware groups targets open RDP Ports

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Many ransomware attacks are being launched against exposed Remote Desktop services by Threat Actors. At present, five ransomware families are attacking open RDP ports...

4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2020/12/17 8:28 p.m.40 views

VideoBytes: Brute force attacks increase due to more open RDP ports

Hello Folks! In this Videobyte, we’re talking about why brute force attacks are increasing and why that is a problem for everyone. The number of RDP ports exposed to the Internet grew from about three million in January 2020 to over four and a half million in March. The reason for this increase i...

0.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2020/11/03 5:38 p.m.18 views

Maze ransomware gang announces retirement

The threat actors behind Maze ransomware have announced their retirement. On November 1, they posted the retirement announcement on the website where they would normally name and shame their victims that were unwilling to pay the ransom. image courtesy of Graham Cluley "The Project is closed. Maz...

6.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2020/10/20 12:0 p.m.33 views

Brute force attacks increase due to more open RDP ports

While leaving your back door open while you are working from home may be something you do without giving it a second thought, having unnecessary ports open on your computer is a security risk that is sometimes underestimated. Thats because an open port can be subject to brute force attacks. What...

7.5AI score
Exploits0
ThreatPost
ThreatPost
added 2020/08/24 3:23 p.m.260 views

Iran-Linked 'Newbie' Hackers Spread Dharma Ransomware Via RDP Ports

A group of ‘script kiddies’ tied to Iran are targeting companies worldwide with internet-facing Remote Desktop Protocol RDP ports and weak credentials in order to infect them with Dharma ransomware. The Dharma malware also known as Crysis has been distributed as a ransomware-as-a-service RaaS mod...

1.9CVSS0.5AI score0.84138EPSS
Exploits13References10
Rows per page
Query Builder