Cybersecurity Digest #49: 02/05/2022 – 13/05/2022

Cybersecurity news

Cybersecurity Blog Posts

Research and analytics

  • Researchers from Trend Micro have identified a new sample of the AvosLocker ransomware, which has learned to use unpatched vulnerabilities to disable antivirus programs after penetrating the victim’s network. The malware uses a legitimate Avast Anti-Rootkit Driver (asWarPot.sys ) to disable antivirus protection.
  • According to Cybereason, the Chinese cybercrime group Winnti has been stealing intellectual property and other data from American and Asian companies for many years.
  • According to the FBI, $43.31 billion was stolen from June 2016 to December 2021 as a result of more than 241,000 incidents. Based on the financial data reported to the IC3 for 2021, banks located in Thailand and Hong Kong were the primary international destinations of fraudulent funds. China, which ranked in the top two destinations in previous years, ranked third in 2021 followed by Mexico and Singapore.
  • The US Cybersecurity and Infrastructure Protection Agency (CISA) mentioned the most common computer vulnerabilities identified in 2021. The most popular vulnerability among hackers was Log4Shell or CVE-2021-44228.
  • ThoughtLab announced the findings of study Cybersecurity Solutions for a Riskier World which analyzed the cybersecurity strategies and results of 1,200 large organizations across 16 countries. The research revealed that the pandemic has brought cybersecurity to a critical inflection point. The number of material breaches respondents suffered rose 20.5% from 2020 to 2021, and cybersecurity budgets as a percentage of firms’ total revenue jumped 51%, from 0.53% to 0.80%.
  • SpyCloud analyzed the exposed data tied to employees of Fortune 1000 organizations in our database. For this analysis, we examined over 126 million Fortune 1000 employee breach records containing more than 687 million assets, all of which are available to cybercriminals and can be used for malicious purposes.
  • Sucuri Security’s 2021 Website Threat Research Report has revealed that payment card skimmers are becoming more common in exploit kits affecting WordPress websites, and that attackers are spending more time customizing them to avoid detection.
  • Kaspersky Lab summarized the tendencies that characterize ransomware landscape in 2022. This year, ransomware is no less active than before: cybercriminals continue to threaten nationwide retailers and enterprises, old variants of malware return while the new ones develop.

Major Cyber Incidents