Trigona Ransomware Trolling for Poorly Managed MS-SQL Servers

  /     /     /  
Publicated : 23/11/2024   Category : security

Trigona Ransomware Trolling for Poorly Managed MS-SQL Servers


Vulnerable MS-SQL database servers have external connections and weak account credentials, researchers warn.


The Trigona ransomware threat actors are waging a campaign against Microsoft SQL database servers because many of them have external connections and weak passwords, leaving them open targets for brute force or dictionary attacks.
These
vulnerable MS-SQL servers
were designated as poorly managed by AhnLab Securitys new alert about Trigonas nefarious activities.
If a threat actor manages to log in, control over the system will be passed to them, allowing them to install malware or execute malicious commands, the report said.
Theyre popular repeat targets too, and not just for Trigona: In one instance observed by AhnLab researchers, credentials for a breached MS-SQL server were compromised by several threat actors, leaving traces of various ransomware strains,
 Remcos RAT,
and coinminers, the report said.Additionally, MS-SQL can be installed on both
Windows SQL servers
and desktop environments. 
For example, there are cases where MS-SQL is installed alongside certain enterprise resource planning (ERP) and work-purpose solutions during their installation process, the
Trigona ransomware
report added. Because of this, Windows servers and Windows desktop environments can both be targeted for MS-SQL server attacks.
AhnLab Security noted Trigona is a relatively new ransomware group, first observed last October.

Last News

▸ ArcSight prepares for future at user conference post HP acquisition. ◂
Discovered: 07/01/2025
Category: security
▸ Samsung Epic 4G: First To Use Media Hub ◂
Discovered: 07/01/2025
Category: security
▸ Many third-party software fails security tests ◂
Discovered: 07/01/2025
Category: security


Cyber Security Categories
Google Dorks Database
 		Exploits Vulnerability
 		Exploit Shellcodes

CVE List
 		Tools/Apps
 		News/Aarticles

Phishing Database
 		Deepfake Detection
 		Trends/Statistics & Live Infos



Tags:
Trigona Ransomware Trolling for Poorly Managed MS-SQL Servers