Trigona Ransomware Trolling for Poorly Managed MS-SQL Servers

  /     /     /  
Publicated : 23/11/2024   Category : security


Trigona Ransomware Trolling for Poorly Managed MS-SQL Servers


Vulnerable MS-SQL database servers have external connections and weak account credentials, researchers warn.



The Trigona ransomware threat actors are waging a campaign against Microsoft SQL database servers because many of them have external connections and weak passwords, leaving them open targets for brute force or dictionary attacks.
These
vulnerable MS-SQL servers
were designated as poorly managed by AhnLab Securitys new alert about Trigonas nefarious activities.
If a threat actor manages to log in, control over the system will be passed to them, allowing them to install malware or execute malicious commands, the report said.
Theyre popular repeat targets too, and not just for Trigona: In one instance observed by AhnLab researchers, credentials for a breached MS-SQL server were compromised by several threat actors, leaving traces of various ransomware strains,
 Remcos RAT,
and coinminers, the report said.Additionally, MS-SQL can be installed on both
Windows SQL servers
and desktop environments. 
For example, there are cases where MS-SQL is installed alongside certain enterprise resource planning (ERP) and work-purpose solutions during their installation process, the
Trigona ransomware
report added. Because of this, Windows servers and Windows desktop environments can both be targeted for MS-SQL server attacks.
AhnLab Security noted Trigona is a relatively new ransomware group, first observed last October.

Last News

▸ Feds probe cyber breaches at JPMorgan, other banks. ◂
Discovered: 23/12/2024
Category: security

▸ Security Problem Growing for Dairy Queen, UPS & Retailers, Back off ◂
Discovered: 23/12/2024
Category: security

▸ Veritabile Defecte de Proiectare a Securitatii in Software -> Top 10 Software Security Design Flaws ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Trigona Ransomware Trolling for Poorly Managed MS-SQL Servers