FBI, CISA Issue Joint Warning on 'Snatch' Ransomware-as-a-Service

The group's use of malware that forces Windows computers to reboot into Safe Mode before encrypting files is noteworthy, advisory says. [TechWeb]( Follow Dark Reading: [RSS]( September 21, 2023 LATEST SECURITY NEWS & COMMENTARY [FBI, CISA Issue Joint Warning on 'Snatch' Ransomware-as-a-Service]( The group's use of malware that forces Windows computers to reboot into Safe Mode before encrypting files is noteworthy, advisory says. ['Culturestreak' Malware Lurks Inside GitLab Python Package]( The GitLab code hijacks computer resources to mine Dero cryptocurrency as part of a larger cryptomining operation. [Fake WinRAR PoC Exploit Conceals VenomRAT Malware]( A supposed exploit for a notable RCE vulnerability in the popular Windows file-archiving utility delivers a big sting for unwitting researchers and cybercriminals. [International Criminal Court Suffers Cyberattack]( The ICC did not reveal details on the cyber breach. [Changing Role of the CISO: A Holistic Approach Drives the Future]( The CISO's role has grown far beyond supervising Patch Tuesday to focus on prevention and response and to cover people, processes, and technology. [How Choosing Authentication Is a Business-Critical Decision]( MFA may go a long way in improving password security, but it's not foolproof. [(Sponsored Article) AI in Software Development: The Good, the Bad, and the Dangerous]( Just like with using open source, organizations need to be diligent about testing AI components and understanding where and how it is used in their software. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [China-Linked Actor Taps Linux Backdoor in Forceful Espionage Campaign]( "SprySOCKS" melds features from multiple previously known badware and adds to the threat actor's growing malware arsenal, Trend Micro says. [Name That Toon: Somewhere in Sleepy Hollow]( Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. [Engineering-Grade OT Protection]( The worst-case consequences of cyberattacks are sharply, qualitatively different on IT versus OT networks. [Clorox Sees Product Shortages Amid Cyberattack Cleanup]( Everyone's favorite pandemic-era brand is experiencing store shortages in the wake of a cyberattack that impacted its global production lines — and there's no timeline for normal operations to resume. [MORE]( EDITORS' CHOICE [MGM, Caesars Face Regulatory, Legal Maze After Cyber Incidents]( MGM and Caesars are putting new SEC incident disclosure regulations to a real-world test in the aftermath of twin cyberattacks on the casinos, as class-action lawsuits loom. LATEST FROM THE EDGE [Will Generative AI Kill the Nigerian Prince Scam?]( A linguist analyzes whether GPT will improve the notoriously agrammatical scam — or finally render it a thing of the past. LATEST FROM DR TECHNOLOGY [Yubico Goes Public]( The Swedish company went public by merging with a special purpose acquisition company ACQ Bure. LATEST FROM DR GLOBAL [Pro-Iranian Attackers Target Israeli Railroad Network]( The group known as "Cyber Avengers" has targeted other Israeli services in the past and often publishes technical details of its hits. WEBINARS - [Preventing Attackers From Navigating Your Enterprise Systems]( Cyber attackers are increasingly stealing user credentials and waltzing right into enterprise networks. Once in, they can move laterally to other internal systems and gain access to a wide variety of applications and privileged systems. In this webinar, experts discuss ... - [Passwords Are Passe: Next Gen Authentication for Today's Threats]( Cyber experts agree: end-user authentication needs more than the simple password. But what are the right tools and strategies for authentication in your organization? What does the world of passwordless look like for your organization? In this webinar, experts offer ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [Crucial Considerations when Enabling Secure Industrial Digital Transformation]( - [Causes and Consequences of IT and OT Convergence]( - [Evaluating SASE for the Work-From-Anywhere Era]( - [Work From Anywhere Doesn't Have to Be Complicated]( - [2023 Work-From-Anywhere Global Study]( - [Rediscovering Your Identity]( - [Cybersecurity in a post pandemic world: A focus on financial services]( [View More White Papers >>]( FEATURED REPORTS - [How to Deploy Zero Trust for Remote Workforce Security]( - [What Ransomware Groups Look for in Enterprise Victims]( Ransomware attackers cast a wide net -- they just care about causing damage, making money, and gaining new victims. That means no organization is automatically immune to attack just because of its size or industry. Organizations need to take steps ... - [How Enterprises Are Managing Application Security Risks in a Heightened Threat Environment]( Concerns over API security and low-code/no-code use added to an already-full plate of application security challenges for many organizations over the last year. IT and security decision-makers are deeply concerned about compromises resulting from vulnerabilities in the software supply ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Bishop Fox Expands Leadership With First CISO and CTO]( [83% of IT Security Professionals Say Burnout Causes Data Breaches]( [OneLayer Expands Its Private Cellular Network Security Solutions to Operations and Asset Management]( [Dig Security Enhances DSPM Platform to Secure Enterprise Data in On-Prem, File-Share Environments]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [The State of Supply Chain Threats]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=118306&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_09.21.23&sp_cid=49893&utm_content=DR_NL_Dark%20Reading%20Daily_09.21.23&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#03 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)