article thumbnail

A ransomware attack took 100 Romanian hospitals down

Security Affairs

The attack took place on February 11 and encrypted data in the production servers. As a result of the attack, the system is down, files and databases are encrypted.” “During the night of February 11 to 12, 2024, a massive cyber ransomware attack took place on the production servers on which the HIS IT system runs.

article thumbnail

The FBI issued a flash alert for Hive ransomware operations

Security Affairs

In order to facilitate file encryption, the ransomware look for processes associated with backups, anti-virus/anti-spyware, and file copying and terminates them. The Hive ransomware adds the.hive extension to the filename of encrypted files. The malware deletes the Hive executable and the hive.bat script. key.hive or *.key.*.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Hackers hijacked the eScan Antivirus update mechanism in malware campaign

Security Affairs

Below the infection chain described by Avast: The eScan updater triggers the update The downloaded package file is replaced with a malicious one on the wire because of a missing HTTPS encryption (MitM is performed) A malicious package updll62.dlz

Cleanup 329
article thumbnail

Avast, NordVPN Breaches Tied to Phantom User Accounts

Krebs on Security

In a blog post today, Avast said it detected and addressed a breach lasting between May and October 2019 that appeared to target users of its CCleaner application, a popular Microsoft Windows cleanup and repair utility. million downloads of the corrupt CCleaner version.

Cleanup 157
article thumbnail

Unveiling JsOutProx: A New Enterprise Grade Implant

Security Affairs

This initial code cleanup revealed interesting information such as some of the static configuration initialized during the initial malware execution stages. The function “t_ey” is used as deobfuscation function for some of the string chucks pre – configured into the “t_ep” array, enabling us to recover some cleartext.

Cleanup 230
article thumbnail

12 Data Loss Prevention Best Practices (+ Real Success Stories)

eSecurity Planet

Sample access restriction from SolarWinds’ access rights management dashboard Encrypt Data This practice entails using data encryption tools to keep sensitive data confidential and safe from illegal access or exploitation, even if the device is lost or stolen.

article thumbnail

Ransomware: An Enterprise Perspective

Thales Cloud Protection & Licensing

That encryption is highly effective. Why do criminals understand the effectiveness of encryption and we as enterprise strategists do not? Why is encryption consistently seen near the bottom or not listed at all on enterprise cybersecurity strategies? Criminals See & Leverage the Value of Encryption – Why Can’t We?