Trigona Ransomware Attacking MS-SQL Servers

[correlate]

[correlate]

Level 18
Thread author
Top Poster
Well-known
May 4, 2019
801
Content source
https://asec.ahnlab.com/en/51343/
Poorly managed MS-SQL servers typically refer to those that are exposed to external connections and have simple account credentials, rendering them vulnerable to brute force or dictionary attacks. If a threat actor manages to log in, control over the system will be passed to them, allowing them to install malware or execute malicious commands.
Additionally, MS-SQL can be installed on both Windows servers and desktop environments. For example, there are cases where MS-SQL is installed alongside certain ERP and work-purpose solutions during their installation process. Because of this, Windows servers and Windows desktop environments can both be targeted for MS-SQL Server attacks.
Click to expand...
asec.ahnlab.com

Trigona Ransomware Attacking MS-SQL Servers - ASEC BLOG

AhnLab Security Emergency response Center (ASEC) has recently discovered the Trigona ransomware being installed on poorly managed MS-SQL servers. Trigona is a relatively recent ransomware that was first discovered in October 2022, and Unit 42 has recently published a report based on the...
asec.ahnlab.com asec.ahnlab.com
 
  • Like
  • +Reputation
Reactions: Gandalf_The_Grey, Nevi, harlan4096 and 1 other person
You must log in or register to reply here.

Similar threads

Gandalf_The_Grey
    • Like
    • +Reputation
AV-TEST Cybersecurity: Defense Against the Latest Attacking Techniques in the ATP Test (February 2024)
Replies
7
Views
551
Security Statistics and Reports
Practical Response
Practical Response
LASER_oneXM
    • Like
    • +Reputation
    • Wow
New Lilith ransomware emerges with extortion site, lists first victim
Replies
0
Views
659
News Archive
LASER_oneXM
LASER_oneXM
Sandbox Breaker
    • Like
    • Applause
AWS SSM Agent can be used as a RAT
Replies
0
Views
1,054
News Archive
Sandbox Breaker
Sandbox Breaker

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top