Acronis Blog
Acronis Cyber Protection Center
Eric Swotinsky

Latest stories from Eric Swotinsky

June 15, 2022 — 2 min read
Acronis
June 15, 2022 — 2 min read
MSDT "Follina" vulnerability exploited in attacks against U.S., European governments
An unpatched remote code execution vulnerability in the Microsoft Windows Support Diagnostic Tool (MSDT), which is being tracked as CVE-2022-30192, is being exploited in phishing campaigns that are targeting U.S. and European government organizations.
June 14, 2022 — 2 min read
Acronis
June 14, 2022 — 2 min read
Vice Society ransomware hits Italian city of Palermo
Palermo, a city of 1.3 million people and a popular tourist destination in Southern Italy, has become the latest victim of a Vice Society ransomware attack.
June 14, 2022 — 2 min read
Acronis
June 14, 2022 — 2 min read
Black Basta ransomware gang teams up with Qbot
First appearing on the scene as a banking trojan in 2007, Qbot has since expanded to become a powerful botnet threat that frequently works with ransomware gangs. Now the group can count Black Basta as their latest partner.
June 9, 2022 — 2 min read
Acronis
June 9, 2022 — 2 min read
Critical "Follina" vulnerability being actively exploited, enabling malicious Microsoft Word files
A new Windows vulnerability, dubbed CVE-2022 30190 (or "Follina"), allows attackers to create a Word document that will execute malicious code through the MSDT protocol when a user opens the file in Preview mode.
June 8, 2022 — 2 min read
Acronis
June 8, 2022 — 2 min read
SideWinder APT launches 1,000 attacks over two years
In two years time, the APT known as SideWinder has attacked as many as 1,000 victims. While the group behind SideWinder has focused on aviation, defense, IT, legal, and military targets in central Asian countries, it appears to be expanding its geography.
June 8, 2022 — 2 min read
Acronis
June 8, 2022 — 2 min read
Austrian state of Carinthia hit by BlackCat ransomware
Carinthia, the southernmost state in Austria, has had their computer systems encrypted by BlackCat (ALPHV) ransomware, causing a severe disruption of government services.
June 1, 2022 — 2 min read
Acronis
June 1, 2022 — 2 min read
Verizon Data Breach Report shows sharp increase in malware
The 2022 Verizon Data Breach Investigation Report is out, and it covers investigations into 23,896 cybersecurity incidents that occurred in 2021.
May 31, 2022 — 2 min read
Acronis
May 31, 2022 — 2 min read
Snake keylogger spreads through malicious PDFs
A new malware distribution campaign is embedding malicious Microsoft Word documents inside PDF files, prompting victims to launch the Word document as soon as the PDF is opened.
May 31, 2022 — 2 min read
Acronis
May 31, 2022 — 2 min read
Ransomware grounds flights at Indian airline SpiceJet
SpiceJet, the Indian budget airline, was recently hit by a ransomware attack that impacted flight operations.
May 24, 2022 — 2 min read
Acronis
May 24, 2022 — 2 min read
UpdateAgent malware bypasses macOS Gatekeeper
A new variant of the macOS malware known as UpdateAgent shows its evolution into a dropper. UpdateAgent can now infect Mac computers with additional malware while bypassing the protections provided by Gatekeeper.
May 20, 2022 — 2 min read
Acronis
May 20, 2022 — 2 min read
E-commerce giant Americanas reports $183 million in lost sales after ransomware hit
The Brazilian e-commerce giant Americanas was hit by the notorious Lapsus$ group at the end of February. Americanas’ latest financial reports show a loss of $183 million in sales due to this disruption of online services, although the company still managed to generate 22% YoY growth.
May 20, 2022 — 2 min read
Acronis
May 20, 2022 — 2 min read
Emotet continues to evolve, abuse trust
Some former guests of the historic Hotel Warner, which first opened in 1930, have become victims of a malicious email campaign that is spoofing the hotel's email addresses and domain name in order to spread Emotet malware.
May 13, 2022 — 2 min read
Acronis
May 13, 2022 — 2 min read
Colonial Pipeline operators face nearly $1 million penalty
In the wake of last year's DarkSide ransomware attack on Colonial Pipeline that caused fuel shortages across the U.S. East Coast, the company is facing regulatory fines of $986,000.