Cyber Bits · · 2 min read

Cyber Bits: February 26, 2024

Cyber Bits: February 26, 2024

This week’s edition of Cyber Bits virtually crafted its own narrative, and thankfully not all of it was bad news!

LockBit ransomware disrupted by global police operation

Links: Bleeping Computer

Kicking things off on a positive note, the LockBit ransomware-as-a-service (RaaS) operation faced a significant setback, thanks to the concerted efforts of an international law enforcement task force. This strategic operation led to the seizure and control of their website, alongside the arrest of several key members of the ransomware syndicate.

Connectwise ScreenConnect – Critical vulnerability

Links: Bleeping Computer Security Week

Regrettably, not all the news can be positive. Initially identified on February 13th, this exploit of low complexity poses a risk to data access and allows for remote code execution without requiring any user interaction. Discovered only this week, this new vulnerability has already been actively exploited in the wild. In response, ConnectWise commendably issued a patch on February 19th, available to all partners, including those whose maintenance agreements have lapsed. If you’re utilizing ConnectWise ScreenConnect, it’s crucial to contact your partner to verify that you’re operating the latest, patched version.

Cayman Islands Government responds to reported security incident

Links: Youtube Cayman Marl Road

A Cayman Media outlet reported on the 16th that the Cayman Islands Government Computer Services division “experienced a security breach of their system”. In response the CIG released a statement on YouTube to clarify the incident and reassure the public.

Read next

Cyber Bits: November 25
Cyber Bits ·

Cyber Bits: November 25

Welcome to this week's edition of Cyber Bits, where we cover the latest in malware campaigns, advanced persistent threats, data breaches, vulnerabilities in enterprise systems from Fortinet and Palo Alto, and the economic impact of cyberattacks. Here's what you need to know this week:

Cyber Bits: October 21
Cyber Bits ·

Cyber Bits: October 21

In this week's Cyber Bits, Internet Archive faces another breach, Microsoft sets up Azure tenant honeypots, ransomware attacks are using ESET's name, Microsoft may have lost some security logs, and North Korea is targeting companies looking for temporary IT workers.

Cyber Bits: October 14
Cyber Bits ·

Cyber Bits: October 14

In this weeks Cyber Bits, Microsoft deprecates VPN protocols, OpenAI confirms what everyone already knew about bad guys using ChatGPT for malware, SOC teams lament alert fatigue, qualified personnel gaps in cloud and cyber, and how to build cyber resilience for SMB's.