Discover and read the best of Twitter Threads about #Ransomware

Most recents (4)

Ransomware Thread: One day a user clicked on a malicious link which caused some havoc - the company files got encryped with ransomware. Upon investigation looking at the headers of the email it was noted that the email had come from one of the DR servers. How? Why?

#infosec
Apparently the Exchange Admin had decided to carry out a DR test but not considered including the spam filter failover as part of the test. It was only meant to be a short while I mean what could possibly go wrong?

Also this was a known threat so why didnt the IPS block it?
Well turns out the DR mailbox IP’s had been added to an access policy but that policy had not been configured with file analysis. Therefore the email attachment went undetected - passed the firewall and since no spam filter was there ended up in the users mailbox.
Read 7 tweets
2019-11-20: [Emerging] #Ransomware Crippling Rouen University Hospital France🇫🇷 |
#Clop #CryptoMix Variant
Linked Previously to #TA505 Actor Group [1]
Ref (h/t @malwrhunterteam): ->

[1]
🕯️Tracking Since Early 2019 on my Git
@malwrhunterteam 💡This is probably the most solid connection to the Clop ransomware operation (".clop") to this lockdown.

✅Previous earlier samples and decoding scripts from malware resources ->
github.com/k-vitali/crypt…
@malwrhunterteam 1⃣The Clop CryptoMix ransomware extension is uppercase lately and 2⃣the correct Git link ->
github.com/k-vitali/crypt…
Read 5 tweets
Some really important journalism can be produced by local news outlets in preparation for a Super Bowl.

For the run-up to #SuperBowlLIII , this story breaks some very interesting new ground.

A thread:
Iranian hackers wrecked the city of Atlanta's stripper database.

No, we are not making this up.

on-ajc.com/2HJtBwZ #cybersecurity #hacking #SuperBowl
The database recording licenses issued by the city of Atlanta to adult entertainment performers was, according to the city, permanently lost in the 2018 cyberattack on city government. on-ajc.com/2HJtBwZ #cybersecurity #ransomware #hacking
Read 8 tweets
ICYMI: Test Your #VPN's Anti #Phishing Protection .@planetscape .@ALT_uscis .@COPicard2017 .@IndivisibleNet #InfoSec
When #Ransomware 1st Appeared, .@FoolishIT Issued #CryptoPrevent - Is Free, Now Updated. Recommended! foolishit.com/cryptoprevent-… #InfoSec
Read 13 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!