Mrs bigredfish’s employer got hit with the Akita ransomeware attack apparently Monday. What a mess.
They are restoring their network to a backup point from last weekend.
Apparently a BIG problem
www.securityweek.com
www.bleepingcomputer.com
Her remote computer (separate from her personal laptop and segmented off here at the house) was not effected (so far, crosses fingers ) as 1) she has to use a 3rd party VPN to get into their network 2) that machine is isolated on my network 3) data still has to get through my firewall
They are restoring their network to a backup point from last weekend.
Apparently a BIG problem
Akira Ransomware's Exploitation of SonicWall Vulnerability Continues
Akira ransomware group continues to exploit a SonicWall vulnerability for initial access and relies on pre-installed tools to evade detection
Akira ransomware breaching MFA-protected SonicWall VPN accounts
Ongoing Akira ransomware attacks targeting SonicWall SSL VPN devices continue to evolve, with the threat actors found to be successfully logging in despite OTP MFA being enabled on accounts. Researchers suspect that this may be achieved through the use of previously stolen OTP seeds, although...
Her remote computer (separate from her personal laptop and segmented off here at the house) was not effected (so far, crosses fingers ) as 1) she has to use a 3rd party VPN to get into their network 2) that machine is isolated on my network 3) data still has to get through my firewall
