Take the Ransom Out of Ransomware

photo-1579389082947-e54d8e911928-1920w

NetStandard’s Security Minute Series

So the Exchange attacks just keep getting worse. The estimated number of affected Exchange servers is up into the tens of thousands (I’ve seen some estimates in the hundreds of thousands!), and there are at least 10 other attack groups trying to piggyback onto the Exchange webshells that the initial attack left behind. If you or someone you know is running Exchange and has not fully patched and investigated this, call me immediately: At least 10 hacking groups using Microsoft software flaw – researchers | Reuters

A major datacenter hosted by OVH, the world’s third-largest hosting provider, was destroyed by fire this week. Services for multiple clients are impacted, with some clients losing data. If you play the game Rust, you may have seen this already. Another reminder that if you are hosting in the cloud, you still need backup and disaster recovery plans – the cloud is not backup! OVH data center burns down knocking major sites offline (bleepingcomputer.com)
The security camera company Verkada, with over 150,000 cloud-connected security cameras in factories, jails, schools, hospitals, and more, was breached this week. Attackers were able to view camera footage from many sensitive locations, including Tesla factories, Cloudflare offices, a Florida hospital, Sandy Hook Elementary School, a jail in Alabama, and more. Apparently the attackers found an admin password on the internet (draw your own conclusions). And there are some reports that Verkada’s customers might not have been informed that Verkada could access their recordings. Scary stuff: Tesla (TSLA), Cloudfare (NET) Breached in Verkada Security Camera Hack – Bloomberg

If you enjoy Miller, Coors, Molson, or Redd’s, you might want to stock up. Parent company Molson Coors Beverage Company notified the SEC that they are suffering from a ransomware attack that has disrupted production at multiple facilities: Molson Coors beer production disrupted after cyberattack | The Record by Recorded Future
We all know that if you get hit with ransomware, you shouldn’t pay the ransom. But it’s always good to have a reminder now and then. Kaspersky has a good blog about it: Why you shouldn’t pay extortionists | Kaspersky official blog
On another note…

NetStandard

NetStandard

For over 25 years, NetStandard has been providing a wide range of technical solutions to various industries in the Kansas City metro area.