• Login
Fintedex — Business, Fincance & Investment News
  • Contact
  • About us
No Result
View All Result
  • Contact
  • About us
No Result
View All Result
Fintedex — Business, Fincance & Investment News
No Result
View All Result
Home Technology

BlackCat ransomware could be about to get a whole lot nastier

Timothy Wilson by Timothy Wilson
29.09.2022
in Technology
0
BlackCat ransomware could be about to get a whole lot nastier
0
SHARES
13
VIEWS
Share on FacebookShare on Twitter

Following a spate of recent attacks, the notorious BlackCat ransomware could be about to get a whole lot nastier, new research has claimed.

A report from Sophos has said that the threat actors behind the ransomware now appear to have added the Brute Ratel tool to their arsenal, making the tool that much more dangerous.

Brute Ratel is a penetration testing and attack simulation tool, similar but lesser-known that, for example, Cobalt Strike. 

Targeting outdated systems

“What we’re seeing with BlackCat and other attacks recently is that threat actors are very efficient and effective in their work. They use tried and true methods, like attacking vulnerable firewalls and VPNs, because they know these still work. But they show innovation to avoid security defenses, like switching to the newer post-exploitation C2 framework Brute Ratel in their attacks,” said Christopher Budd, senior manager, threat research, Sophos.

Brute Ratel is not the only tool being used, as when analyzing previous incidents, BlackCat was observed using other open-source and commercially available tools to create additional backdoors and other remote access alternatives, such as TeamViewer, or nGrok. Obviously, Cobalt Strike was also used. 

Usually, BlackCat operators would look for outdated firewalls and unpatched VPN services, as their initial point of entry. Since December 2021, they’ve managed to successfully infiltrate at least four organizations, by exploiting vulnerabilities in firewalls. 

Once they obtain network access, they’ll use the firewalls to extract the credentials, and freely move laterally throughout the system. 

Read more

> Elden Ring publisher hit by ransomware attack

> This ransomware gang lets you rummage around their stolen data

> These are the best antivirus software right now

BlackCat doesn’t appear to favor any particular victims, with the threat targeting businesses in the US, Europe, and Asia. 

The only pre-requisite for an attack is that the business operates on systems that have reached end-of-life, don’t have multifactor authentication or VPNs, and use flat networks (where every endpoint has visibility into all other endpoints on the network). 

“The common denominator with all these attacks is that they were easy to carry out. In one instance, the same BlackCat attackers installed cryptominers a month before launching the ransomware. This latest research highlights how important it is to follow established best security practices; they still have a lot of power to prevent and thwart attacks, including multiple attacks against a single network.”

  • These are the best malware protection tools right now

Previous Post

Send in the drones: Seattle Mariners looking for a sky-high hit with unique light show at T-Mobile Park

Next Post

: What a Netflix crackdown on password sharing could look like

Related Posts

Bondstream
Technology

Bondstream™ receives Prestigious Nomination for the 2023 Go Global Awards

by Lillie Hull
07.06.2023
This James Webb telescope image may be hiding more than just the stars
Technology

This James Webb telescope image may be hiding more than just the stars

by Timothy Wilson
29.09.2022
New God of War Ragnarok abilities revealed, including incinerating blades
Technology

New God of War Ragnarok abilities revealed, including incinerating blades

by Timothy Wilson
29.09.2022
DualSense Edge: everything you need to know about the PS5 pro controller
Technology

DualSense Edge: everything you need to know about the PS5 pro controller

by Timothy Wilson
29.09.2022
Bluehost vs GoDaddy: Two top web hosting providers compared
Technology

Bluehost vs GoDaddy: Two top web hosting providers compared

by Timothy Wilson
29.09.2022
Next Post
: What a Netflix crackdown on password sharing could look like

: What a Netflix crackdown on password sharing could look like

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Browse by Category

  • Business
  • Opinion
  • Stock Market
  • Technology
  • Без рубрики

Fintedex delivers real-time news about the financial industry: feature stories, industry developments, opinions plus the latest on people and trends.

Categories

  • Business
  • Opinion
  • Stock Market
  • Technology
  • Без рубрики

Recent Posts

  • What to Include in Your Small Business Emergency Preparedness Plan
  • How to Develop a Winning Content Marketing Plan
  • Where to Discover New Trends in Your Industry for Business Growth

© 2021 Fintedex. Submit news release

No Result
View All Result
  • Contact
  • About us

© 2021 Fintedex. Submit news release

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?