Ofcom, the UK based communications watchdog has issued a public statement that it could have become a victim of a Russian speaking Clop ransomware attack that exploited SQL Injec-tion Vulerability via MOVEit File transfer software.
The Office of Communications (Ofcom) has confirmed that a limited amount of data related to employees working in companies might have been accessed by hackers.
Ofcom is serious about the issue and assured that it has taken all security measures to mitigate the risks associated with the incident.
Meanwhile, Progress Software that owns MOVEit disclosed that a patch to the vulnerability was released on June 9th of this year and urged all its customers to keep their software up to date.
Second is the news related to Omega Ransomware that unlike other ransomware groups does not compromise an end point. Instead, the group gains control of the environment through a weak secure admin account and then elevates permissions and gains control of entire sensitive data and then starts demanding a ransom from the victim. Thus, it highlights the fact that threat actors are now showing a lot of interest in targeting information stored on platforms related to software-as-a-service providers.
Obsidian, a cybersecurity firm discovered the infecting traits of Omega ransomware and con-cluded that the attacks are taking place against SharePoint Online via Microsoft Global SaaS admin accounts.
Third is the news related to data backups and storage, as experts are warning that criminals are finding pathways to infiltrate backed up info and encrypt them unless a ransom is paid. This is where businesses are in need of immutable storage that can not only withstand all sorts of at-tacks.
Well, there is no exact version for the so called “Immutable Storage” but instead of using discs and solid-state drives, one can use tape backups, as they could display write once and read many behaviors. Usually, such characteristics make it impossible for hackers to make changes to a drive or info and so can prove extremely beneficial to those who want to store backed in-formation in storage environments with no much fuss. These solutions can prove economical and can play a vital role serving those who do not want to shell out to criminals in the form of ransom payments.