• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
karakurt: a new emerging data theft and cyber extortion hacking

Karakurt: A New Emerging Data Theft and Cyber Extortion Hacking Group

You are here: Home / General Cyber Security News / Karakurt: A New Emerging Data Theft and Cyber Extortion Hacking Group
December 13, 2021

A beforehand undocumented, financially inspired risk team has been related to a string of details theft and extortion attacks on in excess of 40 entities amongst September and November 2021.

The hacker collective, which goes by the self-proclaimed name Karakurt and was to start with identified in June 2021, is able of modifying its methods and procedures to adapt to the targeted ecosystem, Accenture’s Cyber Investigations, Forensics and Response (CIFR) workforce claimed in a report posted on December 10.

“The danger group is financially inspired, opportunistic in character, and so considerably, seems to concentrate on lesser corporations or corporate subsidiaries vs . the substitute significant sport searching technique,” the CIFR crew mentioned. “Centered on intrusion evaluation to day, the menace group focuses entirely on knowledge exfiltration and subsequent extortion, fairly than the more damaging ransomware deployment.”

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


Automatic GitHub Backups

95% of the identified victims are centered in North The us, when the remaining 5% are in Europe. Qualified solutions, healthcare, industrial, retail, technology, and amusement verticals have been the most focused.

The target, the scientists pointed out, is to steer clear of drawing awareness to its destructive activities as substantially as probable by relying on residing off the land (LotL) strategies, wherein the attackers abuse respectable application and features accessible in a technique these as running system elements or set up program to shift laterally and exfiltrate data, as opposed to deploying write-up-exploitation instruments like Cobalt Strike.

Karakurt

With ransomware attacks getting all over the world attention in the wake of incidents aimed at Colonial Pipeline, JBS, and Kaseya as effectively as the subsequent regulation enforcement steps that have induced actors like DarkSide, BlackMatter, and REvil to shutter their operations, Karakurt seems to be attempting a distinct tack.

Prevent Data Breaches

Fairly than deploy ransomware soon after getting first entry to victims’ internet-facing programs through respectable VPN qualifications, the actors focuses almost exclusively on info exfiltration and extortion, a move that’s much less probably to convey the targets’ company routines to a standstill and still allow Karakurt to demand a “ransom” in return for the stolen information and facts.

Other than encryption info at rest where ever relevant, businesses are suggested to turn on many-factor authentication (MFA) to authenticate accounts, disable RDP on exterior-struggling with devices, and update the infrastructure to the most up-to-date variations to avoid adversaries from exploiting unpatched techniques with publicly-acknowledged vulnerabilities.

Uncovered this report fascinating? Stick to THN on Facebook, Twitter  and LinkedIn to examine additional exclusive articles we put up.


Some sections of this report are sourced from:
thehackernews.com

Previous Post: «top 3 saas security threats for 2022 Top 3 SaaS Security Threats for 2022
Next Post: Ex-NFL Star Gets Three Years for #COVID19 Fraud Cyber Security News»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Ransomware Attacks Increasing at “Alarming” Rate
  • Senate Report: US Government Lacks Comprehensive Data on Ransomware
  • Popular PyPI Package ‘ctx’ and PHP Library ‘phpass’ Hijacked to Steal AWS Keys
  • Fronton IOT Botnet Packs Disinformation Punch
  • SIM-based Authentication Aims to Transform Device Binding Security to End Phishing
  • New Chaos Ransomware Builder Variant “Yashma” Discovered in the Wild
  • Open source packages with millions of installs hacked to harvest AWS credentials
  • DOE ‌‌‌‌‌‌‌‌‌‌‌‌‌‌‌funds‌ ‌development of Qunnect’s Quantum Repeater
  • Cabinet Office Reports 800 Missing Electronic Devices in Three Years
  • Malware Analysis: Trickbot

Copyright © TheCyberSecurity.News, All Rights Reserved.