Here Are 4 Vulnerabilities Ransomware Attacks Are Exploiting Now

  /     /     /  
Publicated : 22/11/2024   Category : security


Here Are 4 Vulnerabilities Ransomware Attacks Are Exploiting Now


A zero-day exploit exposed in the Hacking Team breach is among the top weapons deployed in recent ransomware attacks, as well as lots of Flash.



Don’t blink, but there’s a common thread in the most recent ransomware attacks: they use four known Adobe Flash Player and Microsoft Silverlight software bugs that have patches available, according to new research published today.
So if you haven’t already patched recently revealed Flash flaws CVE-2015-7645, CVE-2015-8446, CVE-2015-8651, and Microsoft Silverlight’s CVE-2016-0034, you’ll “significantly” minimize your risk of getting hit by the latest in ransomware threats if you apply these updates, according to Recorded Future, which analyzed which vulns were being exploited most in ransomware attacks as of March 16.
Scott Donnelly, a director at Recorded Future, says he launched the study after talking with a friend at a local Blue Cross/Blue Shield location about worries of the potential threat of a ransomware attack. The organization relies on a vendor for its software-patching, so that made Donnelly wonder which vulnerabilities are being used most by popular exploit kits in ransomware attacks.
“There are multiple ways to get hit by ransomware. We looked at some of the recent vulnerabilities with exploits ... for patch prioritization” planning, Donnelly says.
Recorded Future says
its analysis
suggests that recent highly publicized attacks on hospitals and police departments in North American and Europe were most likely
not
targeted attacks: instead, the bad guys had cast a wide net and those poorly patched systems landed right in it.
“We’re now at the point where you can get crippled in same way as with targeted attack [as you can] by an untargeted one,” Donnelly says. “A hospital worker using an EMR [electronic medical record]... Googles a patient’s condition and gets ransomware,” for example.
The Angler, Neutrino, Magnitude, RIG, and Nuclear exploit kits spread the Flash CVE 2015-7645 exploit; Angler spreads Flash 2015-8446; Angler and Neutrino spread Flash CVE 2015-8651; and Angler spreads Silverlight CVE-2016-0034, an exploit exposed in the Hacking Team breach.
In addition to patching these four vulns, Recorded Future offers additional recommendations for thwarting ransomware attacks: set Flash to “click to play;” run browser ad-blockers to protect against malvertising-borne attacks; and perform regular backups, especially of shared files, which are often the target of ransomware attacks.
“If you don’t make the decision to keep backups offline when you’re hit, you have a binary decision: either pay the ransom or lose the data,” says Levi Gundert, director of intelligence strategies at Recorded Future.
Meanwhile, ransomware victim counts are likely more widespread than is publicly known. “So many companies don’t publicize that they’ve been hit” by ransomware, Donnelly says.
Related Content:
Kaspersky Caught Scent Of Silverlight Zero-Day In Hacking Team Breach2016-
10 Shocking New Facts About Ransomware
Ransomware Will Spike As More Cybercrime Groups Move In
Two Biggest Reasons Ransomware Keeps Winning
 
Find out more about
ransomware
 at Interop 2016, May 2-6, at the Mandalay Bay Convention Center, Las Vegas.
Register today
and receive an early bird discount of $200.

Last News

▸ Hack Your Hotel Room ◂
Discovered: 23/12/2024
Category: security

▸ Website hacks happened during World Cup final. ◂
Discovered: 23/12/2024
Category: security

▸ Criminal Possession of Government-Grade Stealth Malware ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Here Are 4 Vulnerabilities Ransomware Attacks Are Exploiting Now