Ransomware

QNAP, a Taiwan-based network-attached storage (NAS) manufacturer, has issued an advisory about ransomware and brute-force attacks that affect all network-attached storage devices. The ransomware attacks began targeting the NAS device suite on January 6, and the company urges customers to secure their compromised devices as soon as possible. “Open the Security Counselor on your QNAP… Read More

In this article, I'm going to describe how to use Microsoft 365 Defender Threat Analytics to improve security in your organization. Over three Petri articles, we've dived into what Microsoft Defender for Endpoint (MDE) is, how you can migrate to it, and how it should be configured. Part 1: Understanding Microsoft Defender for Endpoint and… Read More

With the rise in remote workers the risk of ransomware is higher than it has ever been before. By now most people know that ransomware is a type of malware extortion scheme that typically encrypts files and folders preventing access to critical data or sometimes it can also be used to steal sensitive data. After… Read More

Microsoft recently announced that Microsoft Defender for Endpoint will soon be available in two plans: P1 and P2. In this article, I will look at how the two plans compare. With Windows, MacOS, iOS, and Android devices being the most common target for cyber criminals, malware and threats are continuously improving and evolving. In the… Read More

The LockFile ransomware group has been actively launching attacks against Microsoft Exchange Servers, exploiting three vulnerabilities that were patched by Microsoft in April and May this year. Known as the Exchange Server ProxyShell vulnerabilities, the LockFile group uses them, in conjunction with the Windows PetitPotam vulnerabilities that were partially patched in the round of updates… Read More

Earlier this month, the Azure Sentinel and Microsoft Threat Intelligence Center (MSTIC) teams announced the public availability of 'Fusion detection for ransomware'. Fusion is designed to automatically correlate security alerts that could be related to ransomware. More precisely, Microsoft said the Fusion machine learning model collates alerts detected in a specific timeframe during defense evasion… Read More

Audit and test Microsoft Defender Controlled Folder Access to help protect your organization against ransomware.

Microsoft uses National Cybersecurity Awareness Month to highlight import security issues to help raise awareness with its customers.

According to Kaspersky’s Threat Evolution Report Q3 2019, there is new ransomware ‘focused solely on NAS’ active in the wild.

It's great when Microsoft introduces new functionality to SharePoint Online to make the lives of administrators and users easier, which is what the Restore this library feature is all about. Then problems happen, and we understand where the flaw lines exist. Recovering from a recent ransomware attack caused one Office 365 tenant more problems than they thought likely because Restore this library didn't work as well as expected.

Some people worry that Exchange Online mailboxes could be compromised by ransomeware and people will be forced to pay BitCoin to decrypt their messages. It's certainly a possibility, but out-of-the-box solutions exist if you're unlucky enough to be infected. That is, if you've done the necessary up-front planning to prepare for the worst to happen.,

On this edition of the Enterprise Dish, Ransomware continues to expand its threat model and Rick has a few tips that can help keep you out of the headlines.

According to SCORE, the US association for small businesses, a survey conducted for National Cybersecurity Awareness Month shows that 43% of cyberattacks are targeted at small businesses.

In this Ask the Admin, Russell Smith shows you what Office 365 Secure Score can do for the online security of your business.

In this Ask the Admin, Russell Smith explains how Controlled Folder Access can help protect users against ransomware.