Latest news with #Pilling
Axios
an hour ago
- Axios
Ransomware spree looms after SharePoint breach
Ransomware gangs are on the hunt for organizations that have yet to patch their vulnerable Microsoft SharePoint servers. Why it matters: Those could include organizations across the government and sectors including education, health care, transportation, technology and finance, security experts told Axios. State of play: As of Wednesday, more than 400 systems had been actively compromised via the SharePoint zero-day vulnerability, according to researchers at Eye Security. Several federal government agencies — including at the departments of Energy, Homeland Security, and Health and Human Services — have been hacked, likely by groups linked to the Chinese government. Malicious hackers have attempted to break into more than 90 state and local government offices, according to Randy Rose, vice president of security operations and intelligence at the Center for Internet Security, which runs the Multi-State Information Sharing and Analysis Center. Last week, researchers warned that the attackers were also stealing machine keys once they broke in — which would allow them to return even after a vulnerable SharePoint server was patched. Threat level: The new Warlock ransomware gang is actively targeting vulnerable SharePoint servers, Microsoft warned last week. Since emerging in June, the Warlock gang has claimed responsibility for attacking 19 victims across the government, finance, manufacturing, technology and consumer goods sectors, according to security firm Halcyon. The group is believed to be a descendent of the Black Basta gang, which was known for hacking more than 500 organizations globally, per U.S. authorities. Zoom out: Ransomware is the most pressing long-tail cyber threat for organizations to be concerned about, Rafe Pilling, director of threat intelligence at Sophos' Counter Threat Unit, told Axios. So far, Sophos hasn't seen any active ransomware attacks tied to the SharePoint vulnerability, but Pilling said it's only a matter of time. "No doubt, there will be people that don't patch, and we will continue to see this pop up as an entry point down the line," Pilling said. The big picture: Ransomware gangs routinely adopt newly discovered zero-day vulnerabilities to gain access to corporate networks. In 2021, ProxyShell — a trio of critical vulnerabilities in Microsoft Exchange Server — was discovered by security researchers and patched by Microsoft. But before many organizations updated their systems, the flaws were exploited first by espionage-focused hackers and then by opportunistic ransomware gangs. Within weeks, several groups had used the vulnerabilities to breach at least a thousand organizations. The incident demonstrated how quickly ransomware operators can weaponize publicly disclosed vulnerabilities. While the initial wave subsided after widespread patching, there have still been attacks reported years later. Reality check: Pilling said that the SharePoint attacks will likely be less detrimental than ProxyShell and similar incidents but that companies are still at risk if they haven't patched. Between the lines: These types of complex, multistage hacks are becoming the norm, Cliff Steinhauer, director of information security and engagement at the National Cybersecurity Alliance, told Axios. The SharePoint hacks are the result of attackers stringing together two vulnerabilities that, on their own, "weren't that big of a deal, " Steinhauer said. "Attackers know that they're not as prioritized and that we're all already trying to patch so many vulnerabilities that we have to prioritize," he said. "They're gaming the system." What to watch: Ransomware gangs are likely to try targeting vulnerable, unpatched SharePoint servers for months to come.
The Irish Sun
5 days ago
- The Irish Sun
Shocking moment ex-footballer, 22, ploughs into elderly gran and flees before being hunted down by horrified bystanders
THIS is the shocking moment an ex-footballer riding an e-bike ploughed into a grandmother crossing the road. Footage shows Margaret Scaldwell, 70, walking across Orell Road, in Wigan, in August 2023. Advertisement 7 Margaret Scaldwell, 70, was walking across Orell Road, in Wigan Credit: GMP 7 Kian Monks was speeding at around 40mph in a 30mph zone with Joel Pilling Credit: GMP 7 Monks tried to deny he had been riding the e-bike Credit: GMP Kian Monks, then aged 19, barrels towards her at around 40mph on a Talaria Sting The grandmother was thrown several metres through the air and smashed her head on the pavement. A distressed 999 caller could be heard telling a dispatch officer: "She's in the middle of the road, she's just been knocked over. "Her head's open, there's blood everywhere, she is breathing, the lad's trying to run away, the one who knocked her over. It's not good." Advertisement Read More Cowardly Monks was filmed by members of the public as he fled from the scene down an alleyway. When officers caught up to the thug his face was covered in blood. He tried to plead innocence and told police: "I wasn't driving, it wasn't me. I've hit my head. I've hurt my head and my jaw." The teen had been riding the Talaria Sting, which had its speed limiter disconnected, alongside Joel Pilling, 22. Advertisement Most read in The Sun Pilling handed himself in to police later the same day. Margaret was rushed to hospital with a broken spine, pelvis, arms and 19 broken ribs. She was placed in a coma with life-changing injuries. The 70-year-old who was once "independent" and "always had a smile" is now unable to feed herself. Advertisement Both Monks and Pilling appeared at Bolton Crown Court yesterday. Monks, now 22, was sentenced to 22 months in prison, after pleading guilty to causing serious injury by dangerous driving, dangerous driving and driving with no licence or insurance. 7 The cowardly teen tried to flee the scene Credit: GMP 7 He was covered in his victim's blood when officers caught him Credit: GMP Advertisement 7 Monks was sentenced to 22 months in jail Credit: GMP The £3,795 Talaria Sting e-bike is considered a motor vehicle under the law and requires insurance. He was also found guilty of failing to stop at the scene of a collision, failing to report a collision and failing to provide a specimen for analysis following a serious collision. Pilling, who owned the motorbike but held no licence, was given a 22-month sentence, suspended for two years. Advertisement He must also carry out 250 hours of unpaid work. In an emotional statement after the sentencing, Margaret said: "These men's selfishness have ruined my life. "Before the collision I was an independent lady and always had a smile on my face. "Now my life is dehumanising, reduced to a long list of hospital appointments with no end in sight and I can no longer walk wash or feed myself. Advertisement "No sentence will bring back my health. But I will not let them beat me as I am determined to recover the best I can." Det Const Steve Pennington, of Greater Manchester Police, said: "This was a shocking incident where two individuals recklessly rode an e-bike through one of Wigan's busiest areas with complete disregard for public safety. "Their dangerous driving resulted in a horrific collision with a grandmother who was simply crossing the road. "She suffered life-changing injuries and spent weeks in a coma - it's nothing short of miraculous that she survived. Advertisement "This incident highlights the severe consequences of operating e-bikes illegally on our roads. "These aren't toys - they're powerful vehicles that require proper licensing, safety equipment, and responsible handling. "Riding without these essentials isn't just breaking the law - it's putting lives at risk. "At GMP we're committed to reducing serious and fatal collisions across our region. Advertisement "We actively support national road safety initiatives like the Fatal 4 campaign, targeting the four main causes of serious road incidents: speeding, using mobile phones, not wearing seatbelts, and driving under the influence. "Road safety is everyone's responsibility, and the consequences of ignoring this can be truly catastrophic." E-bike crack down By Jack Elsom YOBS who terrorise towns with off-road bikes, e-scooters and cars will have them crushed within 48 hours under new police powers. Ministers plan to reduce the time cops can destroy thugs' vehicles from two weeks to two days so they have less chance to retrieve them. Officers have complained that the current 14-day window creates a 'revolving door' where louts have time to reclaim their bikes and cars to keep wreaking havoc. The Home Office has launched a consultation on their proposals to tackle the scourge of anti-social behaviour blighting communities. Policing Minister Dame Diana Johnson said: 'Anti-social and reckless driving brings misery to communities across the country, from dangerous street racing to "By enabling police to seize and dispose of these vehicles within just 48 hours, we're giving our officers the tools they need to deliver immediate results and providing communities the swift justice they deserve.' Labour are also looking to hike the fines for the cost of seizing, towing and crushing vehicles. Home Secretary Yvette Cooper has already announced powers for police to seize bikes, The problem of nuisance driving has become so bad that some forces have launched dedicated operations to combat it. Operation Vulcan in Oldham has been targeting e-bikes, four of which were seized after their drivers were arrested for drug supply. National Police Chiefs' Council Lead for Roads Policing, Chief Constable Jo Shiner, said: 'Anti-social use of a vehicle, such as street racing, street cruising or off-road use is more than a matter of noise pollution. 'It can have long-term effects on a neighbourhood, with the criminal damage of roads, other vehicles and surrounding property.' 7 Margaret was left with life-changing injuries after the horror Credit: GMP
Scottish Sun
5 days ago
- Scottish Sun
Shocking moment ex-footballer, 22, ploughs into elderly gran and flees before being hunted down by horrified bystanders
Click to share on X/Twitter (Opens in new window) Click to share on Facebook (Opens in new window) THIS is the shocking moment an ex-footballer riding an e-bike ploughed into a grandmother crossing the road. Footage shows Margaret Scaldwell, 70, walking across Orell Road, in Wigan, in August 2023. Sign up for Scottish Sun newsletter Sign up 7 Margaret Scaldwell, 70, was walking across Orell Road, in Wigan Credit: GMP 7 Kian Monks was speeding at around 40mph in a 30mph zone with Joel Pilling Credit: GMP 7 Monks tried to deny he had been riding the e-bike Credit: GMP Kian Monks, then aged 19, barrels towards her at around 40mph on a Talaria Sting e-bike. The grandmother was thrown several metres through the air and smashed her head on the pavement. A distressed 999 caller could be heard telling a dispatch officer: "She's in the middle of the road, she's just been knocked over. "Her head's open, there's blood everywhere, she is breathing, the lad's trying to run away, the one who knocked her over. It's not good." Cowardly Monks was filmed by members of the public as he fled from the scene down an alleyway. When officers caught up to the thug his face was covered in blood. He tried to plead innocence and told police: "I wasn't driving, it wasn't me. I've hit my head. I've hurt my head and my jaw." The teen had been riding the Talaria Sting, which had its speed limiter disconnected, alongside Joel Pilling, 22. Pilling handed himself in to police later the same day. Margaret was rushed to hospital with a broken spine, pelvis, arms and 19 broken ribs. She was placed in a coma with life-changing injuries. The 70-year-old who was once "independent" and "always had a smile" is now unable to feed herself. Both Monks and Pilling appeared at Bolton Crown Court yesterday. Monks, now 22, was sentenced to 22 months in prison, after pleading guilty to causing serious injury by dangerous driving, dangerous driving and driving with no licence or insurance. 7 The cowardly teen tried to flee the scene Credit: GMP 7 He was covered in his victim's blood when officers caught him Credit: GMP 7 Monks was sentenced to 22 months in jail Credit: GMP The £3,795 Talaria Sting e-bike is considered a motor vehicle under the law and requires insurance. He was also found guilty of failing to stop at the scene of a collision, failing to report a collision and failing to provide a specimen for analysis following a serious collision. Pilling, who owned the motorbike but held no licence, was given a 22-month sentence, suspended for two years. He must also carry out 250 hours of unpaid work. In an emotional statement after the sentencing, Margaret said: "These men's selfishness have ruined my life. "Before the collision I was an independent lady and always had a smile on my face. "Now my life is dehumanising, reduced to a long list of hospital appointments with no end in sight and I can no longer walk wash or feed myself. "No sentence will bring back my health. But I will not let them beat me as I am determined to recover the best I can." Det Const Steve Pennington, of Greater Manchester Police, said: "This was a shocking incident where two individuals recklessly rode an e-bike through one of Wigan's busiest areas with complete disregard for public safety. "Their dangerous driving resulted in a horrific collision with a grandmother who was simply crossing the road. "She suffered life-changing injuries and spent weeks in a coma - it's nothing short of miraculous that she survived. "This incident highlights the severe consequences of operating e-bikes illegally on our roads. "These aren't toys - they're powerful vehicles that require proper licensing, safety equipment, and responsible handling. "Riding without these essentials isn't just breaking the law - it's putting lives at risk. "At GMP we're committed to reducing serious and fatal collisions across our region. "We actively support national road safety initiatives like the Fatal 4 campaign, targeting the four main causes of serious road incidents: speeding, using mobile phones, not wearing seatbelts, and driving under the influence. "Road safety is everyone's responsibility, and the consequences of ignoring this can be truly catastrophic." E-bike crack down By Jack Elsom YOBS who terrorise towns with off-road bikes, e-scooters and cars will have them crushed within 48 hours under new police powers. Ministers plan to reduce the time cops can destroy thugs' vehicles from two weeks to two days so they have less chance to retrieve them. Officers have complained that the current 14-day window creates a 'revolving door' where louts have time to reclaim their bikes and cars to keep wreaking havoc. The Home Office has launched a consultation on their proposals to tackle the scourge of anti-social behaviour blighting communities. Policing Minister Dame Diana Johnson said: 'Anti-social and reckless driving brings misery to communities across the country, from dangerous street racing to off-road bikes tearing through local parks. "By enabling police to seize and dispose of these vehicles within just 48 hours, we're giving our officers the tools they need to deliver immediate results and providing communities the swift justice they deserve.' Labour are also looking to hike the fines for the cost of seizing, towing and crushing vehicles. Home Secretary Yvette Cooper has already announced powers for police to seize bikes, e-scooters and cars without warning. The problem of nuisance driving has become so bad that some forces have launched dedicated operations to combat it. Operation Vulcan in Oldham has been targeting e-bikes, four of which were seized after their drivers were arrested for drug supply. National Police Chiefs' Council Lead for Roads Policing, Chief Constable Jo Shiner, said: 'Anti-social use of a vehicle, such as street racing, street cruising or off-road use is more than a matter of noise pollution. 'It can have long-term effects on a neighbourhood, with the criminal damage of roads, other vehicles and surrounding property.'
The Sun
5 days ago
- The Sun
Shocking moment ex-footballer, 22, ploughs into elderly gran and flees before being hunted down by horrified bystanders
THIS is the shocking moment an ex-footballer riding an e-bike ploughed into a grandmother crossing the road. Footage shows Margaret Scaldwell, 70, walking across Orell Road, in Wigan, in August 2023. 7 7 Kian Monks, then aged 19, barrels towards her at around 40mph on a Talaria Sting e-bike. The grandmother was thrown several metres through the air and smashed her head on the pavement. A distressed 999 caller could be heard telling a dispatch officer: "She's in the middle of the road, she's just been knocked over. "Her head's open, there's blood everywhere, she is breathing, the lad's trying to run away, the one who knocked her over. It's not good." Cowardly Monks was filmed by members of the public as he fled from the scene down an alleyway. When officers caught up to the thug his face was covered in blood. He tried to plead innocence and told police: "I wasn't driving, it wasn't me. I've hit my head. I've hurt my head and my jaw." The teen had been riding the Talaria Sting, which had its speed limiter disconnected, alongside Joel Pilling, 22. Pilling handed himself in to police later the same day. Margaret was rushed to hospital with a broken spine, pelvis, arms and 19 broken ribs. She was placed in a coma with life-changing injuries. The 70-year-old who was once "independent" and "always had a smile" is now unable to feed herself. Both Monks and Pilling appeared at Bolton Crown Court yesterday. Monks, now 22, was sentenced to 22 months in prison, after pleading guilty to causing serious injury by dangerous driving, dangerous driving and driving with no licence or insurance. 7 7 7 The £3,795 Talaria Sting e-bike is considered a motor vehicle under the law and requires insurance. He was also found guilty of failing to stop at the scene of a collision, failing to report a collision and failing to provide a specimen for analysis following a serious collision. Pilling, who owned the motorbike but held no licence, was given a 22-month sentence, suspended for two years. He must also carry out 250 hours of unpaid work. In an emotional statement after the sentencing, Margaret said: "These men's selfishness have ruined my life. "Before the collision I was an independent lady and always had a smile on my face. "Now my life is dehumanising, reduced to a long list of hospital appointments with no end in sight and I can no longer walk wash or feed myself. "No sentence will bring back my health. But I will not let them beat me as I am determined to recover the best I can." Det Const Steve Pennington, of Greater Manchester Police, said: "This was a shocking incident where two individuals recklessly rode an e-bike through one of Wigan's busiest areas with complete disregard for public safety. "Their dangerous driving resulted in a horrific collision with a grandmother who was simply crossing the road. "She suffered life-changing injuries and spent weeks in a coma - it's nothing short of miraculous that she survived. "This incident highlights the severe consequences of operating e-bikes illegally on our roads. "These aren't toys - they're powerful vehicles that require proper licensing, safety equipment, and responsible handling. "Riding without these essentials isn't just breaking the law - it's putting lives at risk. "At GMP we're committed to reducing serious and fatal collisions across our region. "We actively support national road safety initiatives like the Fatal 4 campaign, targeting the four main causes of serious road incidents: speeding, using mobile phones, not wearing seatbelts, and driving under the influence. "Road safety is everyone's responsibility, and the consequences of ignoring this can be truly catastrophic." E-bike crack down By Jack Elsom YOBS who terrorise towns with off-road bikes, e-scooters and cars will have them crushed within 48 hours under new police powers. Ministers plan to reduce the time cops can destroy thugs' vehicles from two weeks to two days so they have less chance to retrieve them. Officers have complained that the current 14-day window creates a 'revolving door' where louts have time to reclaim their bikes and cars to keep wreaking havoc. The Home Office has launched a consultation on their proposals to tackle the scourge of anti-social behaviour blighting communities. Policing Minister Dame Diana Johnson said: 'Anti-social and reckless driving brings misery to communities across the country, from dangerous street racing to off-road bikes tearing through local parks. "By enabling police to seize and dispose of these vehicles within just 48 hours, we're giving our officers the tools they need to deliver immediate results and providing communities the swift justice they deserve.' Labour are also looking to hike the fines for the cost of seizing, towing and crushing vehicles. Home Secretary Yvette Cooper has already announced powers for police to seize bikes, e-scooters and cars without warning. The problem of nuisance driving has become so bad that some forces have launched dedicated operations to combat it. Operation Vulcan in Oldham has been targeting e-bikes, four of which were seized after their drivers were arrested for drug supply. National Police Chiefs' Council Lead for Roads Policing, Chief Constable Jo Shiner, said: 'Anti-social use of a vehicle, such as street racing, street cruising or off-road use is more than a matter of noise pollution. 'It can have long-term effects on a neighbourhood, with the criminal damage of roads, other vehicles and surrounding property.'
NDTV
6 days ago
- Business
- NDTV
Microsoft Server Hack Likely Single Actor, Over 8,000 Firms Hit
A global attack on Microsoft server software used by thousands of government agencies and businesses to share documents within organisations is likely the work of a single actor, a cybersecurity researcher said on Monday. Microsoft on Saturday issued an alert about "active attacks" on SharePoint servers used within organisations. It said that SharePoint Online in Microsoft 365, which is in the cloud, was not hit by the exploit, also known as a "zero day" because it was previously unknown to cybersecurity researchers. "Based on the consistency of the tradecraft seen across observed attacks, the campaign launched on Friday appears to be a single actor. However, it's possible that this will quickly change," Rafe Pilling, Director of Threat Intelligence at Sophos, a British cybersecurity firm. That tradecraft included the sending of the same digital payload to multiple targets, Pilling added. Microsoft said it had "provided security updates and encourages customers to install them," a company spokesperson said in an emailed statement. It was not clear who was behind the ongoing hack. The FBI said on Sunday it was aware of the attacks and was working closely with its federal and private-sector partners, but offered no other details. Britain's National Cyber Security Centre did not immediately respond to a request for comment. The Washington Post said unidentified actors in the past few days had exploited a flaw to launch an attack that targeted US and international agencies and businesses. According to data from Shodan, a search engine that helps to identify internet-linked equipment, over 8,000 servers online could theoretically have already been compromised by hackers. Those servers include major industrial firms, banks, auditors, healthcare companies, and several US state-level and international government entities. "The SharePoint incident appears to have created a broad level of compromise across a range of servers globally," said Daniel Card of British cybersecurity consultancy, PwnDefend. "Taking an assumed breach approach is wise, and it's also important to understand that just applying the patch isn't all that is required here."
