Conti and Karma actors attack healthcare provider at same time through ProxyShell exploits
An unpatched Microsoft Exchange Server let both ransomware actors in; Karma just stole data, while Conti encrypted.
An unpatched Microsoft Exchange Server let both ransomware actors in; Karma just stole data, while Conti encrypted.
Some code used in the ransomware bear a resemblance to code used in Dridex malware, hinting at a common origin
Active Directory, Visual Studio, and Microsoft Dynamics & Power BI business packages also got updates
Critical bugs fixed in Exchange, Office, and graphics subsystems–plus a few unexpected products