During the past two months, the Guardicore Labs team has been closely following a China-based campaign which aimed to infect Windows MS-SQL and phpMyAdmin servers
This month’s Patch Tuesday was overwhelming in the quantity, type and impact of vulnerabilities published. Among them are two possibly wormable vulnerabilities in Windows systems from
Recently, Guardicore was asked to assist a company whose network was heavily damaged by ransomware. The attack started with a phishing email, proceeded with lateral movement and ended with hundreds of Windows stations within the organization encrypted by ransomware. The attack is attributed to the Dridex family and the ransomware module was the IEncrypt variant.