Proprietary Junk and Microsoft

posted by Roy Schestowitz on Oct 26, 2022

• Microsoft profits fall 14% in 1Q 2023, Windows OEM sales most affected

  Microsoft has seen its profits drop 14% year-on-year in the first quarter of financial year 2023 as PC sales were affected by the slowing economy.

  Another factor that affected the company's revenue was sluggish growth of its cloud services.

  The company recorded US$50.1 billion (A$77.85 billion) in revenue during the quarter, an increase of 11%, but its profits fell to US$17.6 billion.

• More and More Companies Are Getting Hit with Ransomware [2021-2022] [iophk: Windows TCO]

  According to a study conducted by Cloudwards, in 2021, 37% of all businesses and organizations were hit by ransomware and out of all, 32% paid the ransom but recovered only 65% of their data.

  A few months ago, we also published an article about a study showing that in the first five months of 2021 more than 290 companies have become victims of six ransomware groups, but let’s see what the current situation is.

• Alert: This ransomware preys on healthcare orgs via weak-ass VPN servers

  The Daixin Team acquired the VPN credentials through a phishing email that included a malicious attachment. Once in the VPN server, the cybercriminals move laterally through the network via Secure Shell (SSH) and Remote Desktop Protocol (RDP) and have tried to get privileged account access through credential dumping and pass-the-hash tactics.

  The privileged accounts allowed the attackers to get into VMware vCenter Servers to reset account passwords for ESXi servers and then deploy ransomware on them, according to the agencies.

  They noted that third-party reports link Daixin Team's ransomware with source code of the Babuk Locker malware that was leaked last year.

• Hive ransomware gang leaks data stolen during Tata Power cyberattack [iophk: Windows TCO]

  The listing of stolen data suggests any negotiations to pay a ransom failed. This data, reviewed by TechCrunch, includes sensitive employee information, such as Aadhaar national identity card numbers, tax account numbers, salary information, home addresses and phone numbers. The leaked data, which was posted to Hive’s dark web leak site on October 24, also includes engineering drawings, financial and banking records, client records and some private keys.

• Hive Ransomware Continues to Attack Healthcare Providers [iophk: Windows TCO]

  Recent data breaches continue to show the growing prevalence of Hive ransomware and other [cracking] groups as they continue to infiltrate the networks of US healthcare providers.

  High-profile cyberattacks continue to put health systems and patient data in jeopardy, but smaller breaches can be equally detrimental. Without the resources to combat and recover from a ransomware attack, smaller clinics have become easy targets for malicious [attackers]. Meanwhile, unauthorized access to patient information continues to be a problem for other organizations.