Find

Sophos, a global provider of cybersecurity as a service, released its 2023 Threat Report today. The report describes how the cyberthreat landscape has reached a new level of commercialization and convenience for would-be attackers

Kaspersky solutions detected 40,788 new miner modifications in Q2 2022. According to Kaspersky Security Network data in the Middle East, the number of attempts by attackers to run cryptominers on corporate machines increased in Q2 2022 compared to the previous quarter.

Sophos, a global provider of next-generation cybersecurity, announced in the Sophos X-Ops Active Adversary whitepaper, "Multiple Attackers: A Clear and Present Danger", that three prominent ransomware gangs, Hive, LockBit, and BlackCat, all attacked the same network at the same time.

During Q2 2022, Distributed Denial of Service (DDoS) attacks reached a new high as the proportion of smart attacks and average duration increased dramatically. The average duration of a DDoS attack increased 100 times over the previous year, reaching 3,000 minutes. Smart attacks nearly broke the four-year record, accounting for nearly half of all attacks.

Sophos, a global provider of next-generation cybersecurity, has released the "Active Adversary Playbook 2022," which details attacker behaviors observed in the wild by Sophos' Rapid Response team in 2021.

DDoS tools accounted for nearly half of all Linux malware detections during this time period, most likely as a result of automated attacks attempting to reinfect updated servers quickly and repeatedly.

“The presence of miners, like Tor2Mine, in a network is almost always a harbinger of other, potentially more dangerous intrusions. However, Tor2Mine is much more aggressive than other miners,”said Sean Gallagher, threat researcher at Sophos.

Sophos released the Sophos 2022 Threat Report, which highlights how ransomware's black hole is attracting other cyberthreats to form one vast, linked ransomware delivery system– with serious ramifications for IT security.

"The operators behind information-stealing malware are increasingly targeting stored web credentials that provide access to a lot more than they could get by just stealing stored password hashes," said Sean Gallagher, a senior threat researcher.

Ransomware featured in 81% of incidents and 69% of attacks involved the use of the remote desktop protocol (RDP) for lateral movement inside the network.