TRU Security

The Hive extortion group is actively targeting unpatched Microsoft Exchange Servers and using them to deploy ransomware.

On February 23, 2022, a new data wiper and ransomware were deployed on a large number of devices in the Ukraine, as ESET Research reported on Twitter. Just before this, a couple of Ukrainian government sites and services were subjected to DDoS attacks. Cybersecurity specialists discovered that the malware was deployed via Microsoft Active Directory GPO. In addition to the disk wiper and ransomware, a worm component was deploy

The Nordex Group, known as one of the world's largest manufacturers of wind turbines, has confirmed a cyberattack. The attack was discovered end of last month, and Nordex disabled remote access from some networks to their turbines as a precaution.

Qantas-owned airline Jetstar appears to have fallen victim to ransomware, the result of an attack by the Quantum extortion group.

This April, Microsoft's Patch Tuesday came with 128 vulnerability patches — the largest number of fixes seen in the monthly event since September of 2020.

New infostealer malware called Meta is gaining in popularity. It attempts to steal browser passwords, credit cards info, and any other stored credentials.

Perusahaan Gas Negara (PGN) has been hit by a Hive ransomware attack, just days after the group also successfully targeted American healthcare provider Partnership HealthPlan of California (PHC). As a healthcare organization, PHC is a more typical target for the Hive group.