Tag Archive for: virtual

Python ransomware strikes virtual machines in ‘ultra-high-speed’ attacks

/in


Cybersecurity experts have shared details about a speedy new ransomware campaign attacking virtual machines (VM) hosted on a VMware ESXi hypervisor.

Describing it as a sniper-like operation, Sophos researchers claim that it took the attackers less than three hours from breaching the target to encrypting it.

Source…

OFAC Targets Virtual Currency Exchange for Allegedly Facilitating Ransomware Attack | Ballard Spahr LLP

/in


First Post in a Two-Part Series on Recent OFAC Designations

On September 21, 2021 OFAC issued its first sanctions designation against a virtual currency exchange by designating the virtual currency exchange, SUEX OTC, S.R.O. (SUEX) “for its part in facilitating financial transactions for ransomware variants.”  Although this is a unique development, the broader and more important issue for any financial institution or company facing a ransomware attack is the continuing problem encapsulated in OFAC’s six-page Updated Advisory on Potential Sanctions Risks for Facilitating Ransomware Payments, which OFAC released in conjunction with the announcement of the SUEX designation.  The Updated Advisory illustrates a “Catch 22” scenario, in which a victim that halts a ransomware attack by making the demanded payment then may find itself under scrutiny from OFAC on a strict-liability basis if it turns out that the attackers were sanctioned or otherwise had a sanctions nexus.  The Updated Advisory states that OFAC will consider self-reporting, cooperation with the government and strong cybersecurity measures to be mitigating factors in any contemplated enforcement action.

OFAC has been busy.  Tomorrow, we will blog on a more traditional action announced by OFAC right before the SUEX designation:  OFAC’s designation of members of a network of financial conduits funding Hizballah and Iran’s Islamic Revolutionary Guard Corps-Qods Force.  This designation is notable for the targets’ alleged use of gold as a vehicle to launder illicit funds through front companies.

The Blacklisting of SUEX

According to OFAC, over 40% of SUEX’s known transaction history is associated with illicit actors.  As a result, SUEX is prohibited from transacting with U.S. persons or transacting within the United States, and financial institutions and other persons that engage in certain transactions or activities with the sanctioned entities and individuals may expose themselves to sanctions or be subject to an enforcement action.  OFAC issued the designation pursuant to Executive Order (E.O.) 13694, entitled “Blocking the Property of Certain Persons Engaging in Significant Malicious…

Source…

Cape Cod Chamber to Host Virtual Ransomware Webinar

/in


HYANNIS – The Cape Cod Chamber of Commerce and the North Gross Group (NGC) will be hosting a webinar on Ransomware and Malware later this month. 

The webinar, titled “Ransomware & Malware – 5 Things Every Cape Business Should Do,” will be held on Friday June 25th starting at 1:30 PM.

Ransomware and other malware attacks have been on the increase over the past year.

As areas open and travel is returning to normal, the threat continues to increase. Industries such as hospitality and tourism have had relatively limited exposure in the past, but are now becoming an area of focus for the criminal activity.

The session will explore trends in ransomware and malware attacks, specifically reviewing recent cases in hospitality and tourism. 

Earlier this month, the Steamship Authority was a victim of ransomware that impacted several services.

For more information on the webinar and to register, visit the registration page for the event.

Source…

Samsung will preview its plans for the smartwatch during a virtual MWC event on June 28

/in


samsung-logo-mwca.jpg

(Image: Corinne Reichert/ZDNet)

Samsung usually makes a big splash at Mobile World Congress, unveiling new products and services. Last year, MWC was canceled due to the pandemic, but 2021 is a new year, and Samsung is holding a virtual MWC event on June 28. 

The live-streamed event will start at 10:15 am PT/1:15 pm ET on June 28, and will be streamed on Samsung’s YouTube channel, as well as the official MWC website. 

The name of the event gives away what Samsung plans on talking about during the press conference: Galaxy Ecosystem, New Watch Experience, Mobile Security. 

Google and Samsung recently announced that Wear OS, Google’s wearable operating system, and Tizen OS, Samsung’s wearable OS, were joining forces to create a new, more robust wearable offering from the Android maker. This will likely be the first look at the new OS we’ll get, and hopefully, some hardware will follow shortly after. 

According to Samsung’s press release announcing the event, the company plans on “unveiling its vision for the future of smartwatches” that will “deliver a new era of smartwatch experience.”

Sounds great, however, Google’s track record with WearOS isn’t all that impressive. Currently called “Wear,” it’ll be interesting to see which features of the respective operating systems are kept. 

Also on the agenda for the event are improvements for mobile security, presumably Samsung’s Knox offering that is used on its Galaxy phones.

Samsung’s Galaxy Ecosystem, which consists of everything from smartwatches and smartphones to computers and tablets, will also be a topic of discussion during the event. Hopefully Samsung is working on adding more features to make it easier to share content between your various Samsung devices, similar to Apple’s Continuity feature that makes it easy to open links, emails, or share content between a Mac, iPad, iPhone and Apple Watch when they’re near one another. 

We’ll have full coverage of the Samsung event on June 28. In…

Source…