Cybersecurity Breaches and Attacks

MSSP Alert’s news coverage and analysis of cybersecurity breaches and attacks — including hackers, malware, viruses, worms, ransomware, distributed denial of service attacks (DDoS), phishing, stolen passwords, social engineering and more.

U.S. Warns: Ransomware Payments May Violate Sanctions

Making ransomware payments may violate some sanctions, and could expose payers to civil liability, U.S. Department of the Treasury warns.

Conti Ransomware Attacks and RMM Software: CISA, FBI Warning Details

Conti ransomware attacks leverage MSPs’ legitimate RMM (remote monitoring & management) & remote desktop software as backdoors, FBI & CISA warn.

Microsoft Exchange Autodiscover Flaw: How Hackers Can Exploit It

A Microsoft Exchange Autodiscover design flaw can “leak” web requests outside of a user’s domains, Guardicore reports. Here’s the fix.

FBI Withheld REvil Ransomware Decryptor Key As Some MSPs Suffered Encryption

The FBI hid for nearly three weeks a REvil ransomware decryption key. The decision likely delaying some MSP & Kaseya VSA customer recoveries.

Kaseya REvil Ransomware Cyberattack Timeline and Investigation

Everything MSPs need to know about Kaseya VSA supply chain cyberattack investigation, SaaS recovery, on-premises VSA patches, REvil ransomware decryptor key and more.

Deloitte Poll: Most US Executives Lack Ransomware Response Plan

A Deloitte poll shows most executives believe ransomware attacks are major threats, but few have simulated ransomware attacks to prepare for these incidents.

Microsoft MSHTML Vulnerability: What MSSPs and MSPs Need to Know

Hackers exploit Microsoft MSHTML vulnerability. Perch Security & The Cyber Nation explain how MSSPs can protect Microsoft Windows customers.

Howard University Ransomware Attack: Investigation and Network Recovery Updates

Howard University ransomware attack details: External forensic experts assist investigation after cyberattack impacts HBCU’s network.

Labor Day Weekend Ransomware Attacks? FBI, CISA Memo Offers Proactive Warning

The FBI & CISA warn organizations to be on the alert for ransomware attacks on U.S. critical infrastructure during U.S. Labor Day weekend.

T-Mobile Cyberattack: Incident Investigation & Data Breach Timeline

T-Mobile cyberattack investigation taps Mandiant for incident forensics. KPMG reviews T-Mobile security policies & performance measurement.