Summary: The China-backed Ghost ransomware group has attacked over 70 nations since 2021, exploiting vulnerabilities in internet-facing systems to quickly deploy ransomware. The Cybersecurity and Infrastructure Security Agency (CISA) warns organizations to address outdated software and implement better security measures to prevent these rapid attacks. The advisory also highlights the groupβs tactics and variations in their ransomware deployment, which have resulted in significant threats across diverse industries.
Affected: Various organizations and industries worldwide, including critical infrastructure, healthcare, government, and education sectors.
Keypoints :
- Ghost ransomware operates swiftly, often compromising systems within a day and deploying ransomware shortly thereafter.
- The group targets known vulnerabilities in unpatched systems, with significant focus on software from Fortinet, Adobe, Microsoft, and others.
- CISA emphasizes the need for organizations to patch vulnerabilities frequently, as many successful compromises stem from unaddressed software flaws.
Source: https://www.darkreading.com/cyberattacks-data-breaches/ghost-ransomware-targets-orgs-70-countries
Views: 12