Security News > 2024 > August > New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data
2024-08-23 10:24
The threat actors behind a recently observed Qilin ransomware attack have stolen credentials stored in Google Chrome browsers on a small set of compromised endpoints. The use of credential harvesting in connection with a ransomware infection marks an unusual twist, and one that could have cascading consequences, cybersecurity firm Sophos said in a Thursday report. The attack, detected in July
News URL
https://thehackernews.com/2024/08/new-qilin-ransomware-attack-uses-vpn.html
Related news
- Qilin ransomware now steals credentials from Chrome browsers (source)
- Six ransomware gangs behind over 50% of 2024 attacks (source)
- CISA warns of Jenkins RCE bug exploited in ransomware attacks (source)
- CISA Warns of Critical Jenkins Vulnerability Exploited in Ransomware Attacks (source)
- Most Ransomware Attacks Occur When Security Staff Are Asleep, Study Finds (source)
- Google fixes ninth Chrome zero-day exploited in attacks this year (source)
- Most ransomware attacks occur between 1 a.m. and 5 a.m. (source)
- Week in review: PostgreSQL databases under attack, new Chrome zero-day actively exploited (source)
- Lateral movement: Clearest sign of unfolding ransomware attack (source)
- BlackByte Ransomware Exploits VMware ESXi Flaw in Latest Attack Wave (source)