Cybercriminals target MS SQL servers to deliver ransomware

A cyberattack campaign is targeting exposed Microsoft SQL (MS SQL) databases, aiming to deliver ransomware and Cobalt Strike payloads. The attack campaign The attackers target exposed MS SQL servers by brute-forcing access credentials. After having successfully authenticated, they start enumerating the database. A (too often) enabled xp_cmdshell function also allows attackers to run shell commands on the host and launch several payloads. Attackers then: Create new users on the victim host Make registry changes to … More →

The post Cybercriminals target MS SQL servers to deliver ransomware appeared first on Help Net Security.

Thank you for stopping by our page. If you'd like to learn more about this topic, you can find the full article by clicking HERE

« Cyber Security expert Subimal Bhattacharjee takes up visiting scholar role at Indiana …

How China Demands Tech Firms Reveal Hackable Flaws in Their Products »

Other cyber news you might have missed:

Why some celebrities are embracing Artificial Intelligence deepfakes – BBC News2 months ago
The deal allows it to use an artificial intelligence or AI-generated deepfake version of the Hollywood A-lister to "star" in …
How to Mitigate the Damage Caused by Deepfake Technology – Security Boulevard3 weeks ago
Deepfakes' potential to spread false information disingenuously cannot be overstated. Here's what you can do about it.
NSA urges Friends of BRICS countries to collectively tackle cyber security challenges1 month ago
National Security Advisor Ajit Doval has called upon Friends of BRICS countries to join hands in tackling challenges emanating from …
Telesystem to Host Cybersecurity Summit at Citizens Bank Park – Newswire2 months ago
Telesystem’s #HackerSuck Cybersecurity Summits focus on the ever evolving and growing cybersecurity threat landscape, bringing together a team of … Thank …
This Cybersecurity Company Now Offers Threat Intelligence Services – My TechDecisions7 months ago
Cybersecurity firm ESET is launching new threat intelligence services via commercially available reports to help give organizations, … Thank you for …

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

HUMAN FIREWALL

EMPOWERING THE FIRST LINE OF DEFENSE

Cybercriminals target MS SQL servers to deliver ransomware