Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

MS SQL Servers Targeted for Ransomware

September 4, 2023
Reading Time: 2 mins read
in Alerts

Threat actors are launching a sophisticated campaign known as DB#JAMMER, where they exploit vulnerable Microsoft SQL (MS SQL) servers to deploy both Cobalt Strike and a newly identified ransomware strain called FreeWorld. This campaign, as identified by cybersecurity firm Securonix, is notable for its extensive toolset, including enumeration software, RAT payloads, exploitation tools, credential theft software, and the FreeWorld ransomware.

Furthermore, these attackers initially gain access through brute-force attacks on MS SQL servers, underscoring the importance of robust password security. They then proceed to compromise systems, eventually deploying FreeWorld ransomware through lateral movement and malicious tool distribution.

This surge in ransomware attacks coincides with the emergence of new strains like Rhysida, which encrypts and exfiltrates sensitive data, leveraging it as leverage for payment.

Additionally, there’s been a recent release of a free decryptor for Key Group ransomware, taking advantage of cryptographic errors, although it’s effective only for samples compiled after August 3, 2023. The year 2023 has witnessed a significant increase in ransomware incidents, even though the percentage of victims paying has decreased to a record low of 34%. Notably, the average ransom amount paid has risen sharply to $740,144, reflecting the evolving tactics of ransomware threat actors.

As ransomware actors continue to refine their techniques, they have even begun sharing details of their attacks to challenge the eligibility of victims for cyber insurance payouts. This evolving landscape calls for heightened cybersecurity measures, emphasizing the importance of strong passwords, regular updates, and robust security practices to counter these sophisticated threats.

Source:
  • Securonix Threat Labs Security Advisory: Threat Actors Target MSSQL Servers in DB#JAMMER to Deliver FreeWorld Ransomware
Tags: AlertsAlerts 2023Cyber AlertCyber Alerts 2023CyberattackCybersecurityDB#JAMMERFreeWorldMicrosoft SQLMS SQLRansomwareSeptember 2023SQLVulnerabilities
ADVERTISEMENT

Related Posts

FreeDrain Phishing Steals Crypto Funds

FBI Warns Cybercriminals Exploit Routers

May 9, 2025
FreeDrain Phishing Steals Crypto Funds

X Scam Targets Crypto Users with Fake Ads

May 9, 2025
FreeDrain Phishing Steals Crypto Funds

FreeDrain Phishing Steals Crypto Funds

May 9, 2025
COLDRIVER Hackers Target Sensitive Data

COLDRIVER Hackers Target Sensitive Data

May 8, 2025
COLDRIVER Hackers Target Sensitive Data

Cisco Fixes Flaw in IOS Wireless Controller

May 8, 2025
COLDRIVER Hackers Target Sensitive Data

CoGUI Targets Consumer and Finance Brands

May 8, 2025

Latest Alerts

X Scam Targets Crypto Users with Fake Ads

FBI Warns Cybercriminals Exploit Routers

FreeDrain Phishing Steals Crypto Funds

CoGUI Targets Consumer and Finance Brands

COLDRIVER Hackers Target Sensitive Data

Cisco Fixes Flaw in IOS Wireless Controller

Subscribe to our newsletter

    Latest Incidents

    LockBit Ransomware Data Leaked After Hack

    Spanish Consumer Group Faces Cyberattack

    Education Giant Pearson Hit by Data Breach

    Masimo Cyberattack Disrupts Manufacturing

    Cyberattack Targets Tepotzotlán Facebook

    West Lothian Schools Hit by Ransomware

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial