<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1018517621595528&amp;ev=PageView&amp;noscript=1">
Stats & Trends
Jonathan Crowe
Mar 2017

This Week in InfoSec: 250 Million Apple iCloud Accounts Ransomed, Microsoft Docs.com Users Doxed, and More...

icloud-hack.jpg

Photo by Source

icloud-hack.jpg

Things move fast in the world of infosec. Here are the most significant stats and stories to follow from this past week:

250 million Apple iCloud accounts held hostage

If you have an iCloud account, it's time to change your password now. A London-based hacker group calling itself the Turkish Crime Family is threatening to reset the passwords for 250 million iCloud accounts and remotely wipe customer data unless Apple pays $75,000 in ransom by April 7. Some security experts have been skeptical of the claim, but investigation by others has revealed an undetermined number of accounts are likely at risk.  • Read More

Thousands of documents unwittingly exposed by Microsoft Docs.com users  

Users of Docs.com, Microsoft's free document-sharing site tied to Office 365, may be surprised to discover the documents they've been posting are being indexed by search engines and shared publicly. Researchers have been able to get access to documents containing sensitive information simply by using the site's search bar to search for terms like "passwords," "SSN," or "account number". • Read More

279,000 Patients Notified of Urology Austin Ransomware Attack, Data Breach

Ransomware attacks are rarely reported by healthcare organizations as data breaches, but that may be starting to change. An Austin-based provider became the second urology practice in as many weeks to provide their patients with notice their data may have been compromised by a ransomware attack.
Read More

14,766 Let's Encrypt SSL Certificates Issued to PayPal Phishing Sites

During the past year, Let's Encrypt has issued a total of 15,270 SSL certificates that contained the word "PayPal" in the domain name or the certificate identity. Of these, approximately 14,766 (96.7%) were issued for domains that hosted phishing sites. Read More

30 percent of malware is new

New data from network security provider WatchGuard indicates nearly one third of malware attacks utilize samples that are new and considered "zero-day" because it's managed to avoid prior discovery. • Read More

 

This week's stories from the Barkly blog

New trend to watch ›

ransomware-as-a-service-facts.png

Ransomware-as-a-service is booming: What you need to know

New easy-to-use ransomware-as-a-service (RaaS) platforms are giving even novice cyber-criminals the ability to launch sophisticated — and profitable — attacks.

With demand for RaaS skyrocketing and more and more malware developers rushing to meet it, we're seeing the creation of a new highly competitive (and increasingly innovative) ransomware marketplace. As a result, companies need to be prepared to face a larger number and wider variety of ransomware attacks than ever. Read More

Malware spotlight 

Satan-ransomware-as-a-service.png

Take a closer look at one of the newest ransomware-as-a-service operations — then watch how we block it

Since its discovery in January 2017, Satan has quickly gained notoriety as one of the most polished and "user-friendly" RaaS platforms to date. Its easy-to-use online portal provides criminals with everything they need to launch and track ransomware campaigns, including code for encrypting their samples to help them evade detection.

Learn how Satan works, how to know if you've been infected, and see how Barkly stops Satan ransomware samples with runtime malware defense.  Read More

New malware alert ›

cerber_self_extracting_archive_ransomware_attack.png

The trick attackers are using to outsmart machine learning

Attackers behind Cerber ransomware, currently one of the most active ransomware families, have adopted a new technique designed to sneak their malicious code past security solutions that rely on machine learning.

Find out how they're doing it and what adjustments you need to make to prevent your organization from getting infected. Read More
 

That's a wrap for this week. To get updates like these delivered straight to your inbox subscribe to our blog.

Jonathan Crowe

Jonathan Crowe

Jonathan writes about cybersecurity from a practical point of view. He has a strict whitelisting policy for filtering out jargon and only sharing tips and tools that actually work.

blocks-attack-grey-circle.svg

Close the gaps in your security

See how Barkly’s Runtime Malware Defense blocks attacks other solutions miss.

Find out how

Comments

Stay informed!

Get the latest security news, tips, and trends straight to your inbox.

Stay informed!

Get the latest security news, tips, and trends straight to your inbox.