InfoSecBulletin Cybersecurity for mankind
A new ransomware-as-a-service called SophosEncrypt is impersonating the well-known cybersecurity vendor, Sophos. The threat actors have cleverly adopted the company’s name to carry out their operation.
Yesterday, the ransomware was discovered by Malware Hunter Team. At first, Sophos believed it was a component of a red team exercise. The encryptor was not created by the Sophos X-Ops team, as confirmed by their recent tweet. They are currently carrying out an investigation into its release.
MITRE discloses 2024 CWE Top 25 critical software flaw
Python NodeStealer: harvest credit card and Facebook Ads Manager
Cisco Talos
Over 60% of Emails with QR Codes are spam
CERT-In Flags Multiple Critical Vulnerabilities in Zoom app
Daily Security Digest Dated 11/23/24
SafetyDetectives’ Research
Malware evades Microsoft Defender and 2FA, stealing $24K in crypto (video)
Over 145,000 ICS Across 175 Countries Found Exposed Online
World to see AI powered “human washing machines”
Hacker compromised over 2000 Palo Alto Networks Firewalls
“Forces Penpals” exposed US and UK Military Social Network’s 1 Million Records
ALSO READ:
“We found this on VT earlier and have been investigating. Our preliminary findings shows Sophos InterceptX protects against these ransomware samples,” tweeted Sophos.
ID Ransomware has identified a submission from an infected victim as evidence that the Ransomware-as-a-Service operation is happening actively.
Although the specifics of the RaaS operation and its promotion remain largely unknown, Malware Hunter Team stumbled upon a sample of the encryptor, providing us with a valuable glimpse into its inner workings.
