Cybersecurity Briefing for September 12, 2021: Ransomware and Vulnerabilities on the Rise

# Lead Story: REvil Ransomware's Return

The notorious REvil ransomware gang made headlines again on September 7, resurfacing after a hiatus and launching attacks on new victims. Their re-emergence follows a significant incident in July that exploited a zero-day vulnerability in Kaseya VSA, impacting over 1,500 businesses worldwide. This resurgence raises alarms as REvil begins leaking sensitive data on their dark web sites, indicating a potential increase in ransomware activities across various sectors.

# Secondary Items:

Windows MSHTML Zero-Day Vulnerability

Microsoft disclosed a critical zero-day vulnerability in Windows MSHTML (CVE-2021-40444), enabling attackers to execute commands on victim machines through specially crafted documents. This vulnerability has become a widespread threat, prompting immediate attention from security professionals as attackers actively exploit it before Microsoft released a patch.

Olympus Ransomware Attack

The healthcare sector faced a major cyber incident on September 11 when Olympus reported a ransomware attack attributed to the BlackMatter group, affecting its EMEA IT systems. This incident underscores the growing trend of ransomware targeting healthcare organizations, which are increasingly vulnerable due to the sensitive nature of the data they manage.

Data Breach Statistics on the Rise

As of September 2021, there have been over 1,291 reported data breaches, surpassing the total for all of 2020. Notably, the manufacturing and healthcare sectors have experienced significant breaches, compromising millions of records. This trend highlights the escalating risks organizations face in protecting sensitive information.

Expanded Ransomware Threats

The FBI has issued warnings regarding the evolving sophistication of ransomware attacks, particularly from groups like OnePercent. These attackers utilize phishing vectors and exploit personal data to infiltrate organizations, emphasizing the need for enhanced security measures and awareness to combat these dangers.

# Analyst Perspective The cybersecurity landscape in September 2021 is characterized by a surge in ransomware incidents and critical vulnerabilities that threaten organizations across various industries. The return of REvil and the attack on Olympus serve as stark reminders of the persistent and evolving nature of cyber threats. With over a thousand data breaches reported this year alone, organizations must remain vigilant and proactive in their cybersecurity strategies to safeguard against these multifaceted risks. The critical vulnerabilities like CVE-2021-40444 further illustrate the importance of timely patch management and threat awareness in an increasingly hostile digital environment.