Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

MS SQL Servers Targeted for Ransomware

September 4, 2023
Reading Time: 2 mins read
in Alerts

Threat actors are launching a sophisticated campaign known as DB#JAMMER, where they exploit vulnerable Microsoft SQL (MS SQL) servers to deploy both Cobalt Strike and a newly identified ransomware strain called FreeWorld. This campaign, as identified by cybersecurity firm Securonix, is notable for its extensive toolset, including enumeration software, RAT payloads, exploitation tools, credential theft software, and the FreeWorld ransomware.

Furthermore, these attackers initially gain access through brute-force attacks on MS SQL servers, underscoring the importance of robust password security. They then proceed to compromise systems, eventually deploying FreeWorld ransomware through lateral movement and malicious tool distribution.

This surge in ransomware attacks coincides with the emergence of new strains like Rhysida, which encrypts and exfiltrates sensitive data, leveraging it as leverage for payment.

Additionally, there’s been a recent release of a free decryptor for Key Group ransomware, taking advantage of cryptographic errors, although it’s effective only for samples compiled after August 3, 2023. The year 2023 has witnessed a significant increase in ransomware incidents, even though the percentage of victims paying has decreased to a record low of 34%. Notably, the average ransom amount paid has risen sharply to $740,144, reflecting the evolving tactics of ransomware threat actors.

As ransomware actors continue to refine their techniques, they have even begun sharing details of their attacks to challenge the eligibility of victims for cyber insurance payouts. This evolving landscape calls for heightened cybersecurity measures, emphasizing the importance of strong passwords, regular updates, and robust security practices to counter these sophisticated threats.

Source:
  • Securonix Threat Labs Security Advisory: Threat Actors Target MSSQL Servers in DB#JAMMER to Deliver FreeWorld Ransomware
Tags: AlertsAlerts 2023Cyber AlertCyber Alerts 2023CyberattackCybersecurityDB#JAMMERFreeWorldMicrosoft SQLMS SQLRansomwareSeptember 2023SQLVulnerabilities
ADVERTISEMENT

Related Posts

Fake DocuSign Alerts Target Corporate Logins

Fake DocuSign Alerts Target Corporate Logins

May 28, 2025
Fake DocuSign Alerts Target Corporate Logins

Fake Bitdefender Site Spreads Venom Malware

May 28, 2025
Fake DocuSign Alerts Target Corporate Logins

Microsoft Void Blizzard Cyber Threat Alert

May 28, 2025
GhostSpy Android Malware Full Device Control

FBI Warns Luna Moth Targets US Law Firms

May 27, 2025
GhostSpy Android Malware Full Device Control

Winos 4.0 Malware Spread Via Fake Installers

May 27, 2025
GhostSpy Android Malware Full Device Control

GhostSpy Android Malware Full Device Control

May 27, 2025

Latest Alerts

Microsoft Void Blizzard Cyber Threat Alert

Fake DocuSign Alerts Target Corporate Logins

Fake Bitdefender Site Spreads Venom Malware

FBI Warns Luna Moth Targets US Law Firms

Winos 4.0 Malware Spread Via Fake Installers

GhostSpy Android Malware Full Device Control

Subscribe to our newsletter

    Latest Incidents

    Migos IG Hack Blackmails Solana Cofounder

    Tiffany & Co. Faces Data Breach Incident

    MathWorks Crippled by Ransomware Attack

    Everest Ransomware Leaks Coke Staff Data

    Adidas Data Breach Exposes Customer Contacts

    Semiconductor Firm AXT Hit by Data Breach

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial