Law enforcement agencies from the UK and US, led a takedown of the ransomware infrastructure of Lockbit. In seizing the servers, a lot of stolen data was retrieved, along with keys to unlock sites. More importantly, details of affiliates and payments were also acquired.
Axians Switzerland and Sectigo have partnered to improve access to digital certificates. Axians is adding Sectigo Certificate Lifecycle Management (CLM) to its portfolio. It will allow its customers to better manage their public and private certificates. It should help them avoid unexpected system outages caused by rogue or expired certificates.
FBI
The FBI gave more details of the takedown of the Lockbit ransomware in a long post. It includes more details of the operation than were released by the UK, and details of indictments. Russian nationals Artur Sungatov and Ivan Kondratyev, also known as Bassterlord, have been indicted for deploying LockBit against numerous victims throughout the United States.
Several different jurisdictions have filed criminal charges against Kondratyev for deploying Lockbit. Meanwhile, charges against Sungatov have been laid covering attacks in Minnesota, Indiana, Puerto Rico, Wisconsin, Florida, and New Mexico.
ManageEngine
ManageEngine has released an ML-powered exploit triad analytics feature in its SIEM solution, Log360. It gives enterprises contextual visibility into the exploit triad: users, entities and processes. The feature update was unveiled at the ManageEngine User Conference at The Ritz-Carlton, Dubai International Financial Centre in the United Arab Emirates.
Manikandan Thangaraj, vice president of ManageEngine, said, “Today’s cyberthreats masterfully blend into the fabric of legitimate activity, weaponizing stolen credentials, mimicking trusted processes and exploiting human vulnerabilities. These insidious tactics create a critical challenge: an extended data breach life cycle.
“It takes an alarming 277 days to identify and contain a data breach, with expenses surging by 23% after surpassing the 200-day mark. Manual, unguided threat analysis is a losing battle—a labyrinth of multi-tool chaos.”
Noname Security
Noname Security has been named to the CRN Security 100 list. The list recognizes leading IT security vendors committed to working hand-in-hand with channel partners to protect businesses from cybersecurity threats.
“Being named on CRN’s Security 100 list is a tremendous accolade,” said Oz Golan, Co-Founder and CEO of Noname Security. “As the API security threat landscape continually evolves, our commitment to arm our channel partners and their clients with cutting-edge technologies for dynamic API defense is unwavering. Together, we’re setting new standards in proactive API protection to ensure they are staying ahead of threats.”