Cybersecurity Breaches and Attacks

MSSP Alert’s news coverage and analysis of cybersecurity breaches and attacks — including hackers, malware, viruses, worms, ransomware, distributed denial of service attacks (DDoS), phishing, stolen passwords, social engineering and more.

Ransomware Attacks Rose 17% in 2021; REvil and Conti Dominate

How many ransomware attacks were reported and/or publicly disclosed in 2021? Blackfog research reveals answers. Plus: MSSP ransomware mitigation steps.

North Korea Hackers Gain $400 Million in Cryptocurrency Scams

Lazarus and other alleged hacker groups expand their focus on cryptocurrency cyberattacks. Here are 5 steps MSSPs can take to mitigate Lazarus attacks.

How Many Ransomware Attacks vs. U.S. Local Governments, Schools and Healthcare? The 2021 Answer

More than 2,300 ransomware attacks hit U.S. local governments, schools and healthcare providers in 2021, Emsisoft research found.

REvil Ransomware Arrests: Russia Apprehends Alleged Colonial Pipeline Hacker

Russian authorities arrested alleged REvil ransomware group members, including the reputed Colonial Pipeline hacker, a U.S. official said.

Ukraine Cyberattack Timeline: Microsoft, CISA, White House and Kyiv Statements

Cyberattacks vs. the Ukraine continue amid concerns that Russia may invade the country. Microsoft describes malware attacks vs. Ukraine.

CISA: Russian Hackers Exploited Cisco, Microsoft, Oracle, VMware Vulnerabilities in Local Gov’t Attacks

Russia backed hackers exploited vulnerabilities in Cisco, Microsoft, Oracle & VMware equipment in attacks against “dozens” of state, local, tribal, and territorial governments and aviation networks, CISA reports.

Hackers Exploiting Microsoft Exchange Server Vulnerabilities in Enterprise Phishing Campaigns

Hackers exploited recently disclosed Microsoft Exchange Server vulnerabilities to attack enterprise networks & distribute phishing emails both internally & externally, Cybereason research revealed.

Accellion Vulnerabilities, Cyberattacks, Victims, Lawsuits: Customer List and Status Updates

Accellion cyberattack victim list: Banks, universities, telecom companies & businesses that disclosed Accellion File Transfer Appliance hack.

Finalsite Ransomware Attack Details and Cyberattack Recovery Timeline

School cloud services provider Finalsite hires cyberattack forensics team to assist ransomware attack investigation and SaaS recovery.

Calyptix Dashboard Seeks to Help Small Businesses Mitigate Log4j Vulnerability Threat

Calyptix Security’s Community Shield dashboard may empower small businesses to improve security vs Log4j vulnerability.