Cybersecurity Breaches and Attacks

MSSP Alert’s news coverage and analysis of cybersecurity breaches and attacks — including hackers, malware, viruses, worms, ransomware, distributed denial of service attacks (DDoS), phishing, stolen passwords, social engineering and more.

Ransomware Evolves from “Spray and Pray” to Multi-billion Mega Industry

Credit: Getty Images

There are four types of Ransomware Operations (Ransomwareops), according to Cybereason security & cyberattack market research.

PYSA Ransomware Attacks: Here’s What MSSPs Need to Know

Credit: Getty Images

PYSA ransomware attacks target government agencies, educational institutions & the healthcare sector, a Prodaft report shows.

VMware Security Advisory: What MSSPs Need to Know About Vulnerabilities

Credit: Getty Images

VMware advisory addresses security vulnerabilities found & resolved in Workspace ONE Access, vRealize Lifecycle Manager & additional software.

LockBit Ransomware Attack Costs CRM Services Provider Over $42 Million

Credit: Getty Images

Atento, a CRM services provider, experiences $42.1 million in financial losses due to a LockBit ransomware attack dating back to October 2021.

How Frequently Do Hackers Exploit Zero-Day Vulnerabilities? Here’s the Math

Credit: Getty Images

It takes hackers about 12 days to exploit a vulnerability — down from 42 days the prior year, Rapid7 research finds.

LokiLocker Ransomware May Use False Flag to Avoid Identification

A relatively new ransomware-as-a-service (RaaS) family known as LokiLocker is targeting Microsoft Windows users globally, BlackBerry threat researchers said.

Lapsus$ Cyberattack vs Okta, Sitel: Up To 366 Okta Customers Impacted

What Okta channel partners, MSPs & customers need to known about Lapsus$ supply chain cyberattack vs. Okta & contractor named Sitel.

Email Theats: Phishing Attacks Find New Ways to Trick Victims

Here are the top Spear Phishing threats & associated cyberattack trends, according to Barracuda Networks security research.

Russian Cyber Actors Exploit MFA Protocols in Network Attack, CISA Warns

Russian state-sponsored cyber actors have used misconfigured default MFA protocols to access networks & exploit the “Windows Print Spooler” vulnerability, CISA warns.

Bridgestone Cyberattack Timeline and Ransomware Recovery Details

Accenture Security assists Bridgestone cyberattack recovery. Lockbit ransomware crew threatens to release Bridgestone data.