Tag: reached | SpinSafe

Ransomware Leak Site Victims Reached Record-High in November

December 25, 2023/in Internet Security

After a quieter month in October, ransomware groups seemed to return with a vengeance in November, with the highest number of listed victims ever recorded, according to Corvus Insurance.

In a report published on December 18, 2023, Corvus Threat Intel observed 484 new ransomware victims posted to leak sites in November.

This represents a 39.08% increase from October and a 110.43% increase compared with November 2022.

This is the eleventh month in a row with a year-on-year increase in ransomware victims and the ninth in a row with victim counts above 300. This is also the third time such a record has been broken this year.

However, while the previous two records in 2023 were primarily attributed to Clop’s MOVEit supply chain attack, this was not the case in November.

A CitrixBleed-Induced LockBit’s Activity Peak

According to Corvus’ data, the November peak was partly due to a resurgence in LockBit’s activity.

November was LockBit’s third-highest month of 2023 in terms of listed victims (121) after a quieter Fall.

If the first two peaks were due to affiliates returning to work after a winter or a summer break, Corvus threat intelligence analysts estimated that the November increase could be attributed to the CitrixBleed vulnerability, “which has reportedly become a new staple for the group.”

Could QakBot Resurgence Mean a New Record this Winter?

Based on historical seasonal data, the Corvus Threat Intel team predicted that the number of ransomware leak site victims listed in December will be higher than in December 2022 but likely won’t match November’s numbers.

“We expect a decrease in January as the humans behind ransomware attacks take some time off,” the researchers added.

Finally, Corvus observed that although the take-down of malware loader QakBot (aka QBot) by law enforcement in August impacted ransomware groups. This new resurgence in victim listings showed that “the ransomware ecosystem has successfully pivoted away from QBot.”

The fact that…

Source…

Cyberthreats reached a new high this year, with AI playing a major role

November 19, 2023/in Computer Security

Historically, summer is the time of year when hacks and malware scams drop in volume and intensity, mostly because people are on holiday and not as active online as the rest of the year.

However 2023 seems to have bucked this trend, with adware, malvertising, spyware, and other forms of malicious activity spiking in the months from July to August, according to a report from Avast, which reported that during this period, its tools blocked more than a billion attacks every month, which is a new record.

One of the key reasons for this switch in trends is the deployment of Artificial Intelligence (AI) which makes attacks easier to set up, and more potent. Jakub Kroustek, Avast Malware Research Director, said the team was “blown away” by the results of the research. “Apparently the days of cyberthreat seasonality are long gone with the increased use of AI and advanced tools at the fingertips of cybercriminals.”

AI-powered innovations

While attacks may be spiking, there’s nothing spectacular or revolutionary in terms of the threats themselves. The hackers are still deploying adware, malvertising, spyware, and are engaged in finance scams, identity theft, romance scams, and similar.

There are some novelties, though. One is called “Invisible Adware”. This type of malware, which has already been downloaded more than two million times on the Google Play Store alone, allows threat actors to display ads on a mobile device even while the screen is turned off. Best case scenario – victims end up with a drained battery sooner. Worst case – malware is installed without their knowledge. The other one is called Love-GPT, and this is an AI-powered tool that creates realistic personas on popular dating apps.

When it comes to finance scams, the most affected countries are Japan (+19%), Greece (+17%), and the US (+14%). Elon Musk, Mr. Beast, and Donald Trump, are some of the most impersonated individuals out there.

More from TechRadar Pro

Source…

Op-ed: Has cyber warfare reached the age of limitation?

January 18, 2018/in Internet Security

Op-ed: Has cyber warfare reached the age of limitation? Defence IQ

Full coverage

cyber warfare news – read more

Advertising in Windows has reached an exasperating new low

March 10, 2017/in Internet Security

I don’t know what triggers OneDrive advertisements in Explorer. I don’t know if they appear in Windows 10 stable builds or just Insider Previews as a taste of things to come. I don’t know that I even care any more.

But come on.

Nobody in Redmond thought, “Gosh, that’s a little distasteful”? I mean, “Let’s just turn our operating system into a billboard!” offends nobody?

Read 6 remaining paragraphs | Comments

Technology Lab – Ars Technica

Tag Archive for: reached

A CitrixBleed-Induced LockBit’s Activity Peak

Could QakBot Resurgence Mean a New Record this Winter?