Conti is a Russian-based ransomware group that operates a ransomware-as-a-service model to deploy the Conti ransomware. They are one of the more prolific ransomware groups in operation today. The FBI estimates that as of January 2022, there had been over 1,000 victims of attacks associated with Conti ransomware with victim payouts exceeding $150,000,000, making the Conti ransomware variant the costliest strain of ransomware ever documented.1 Although Conti focuses on the healthcare sector, Conti ransomware has also victimized organizations in the Energy, Food and Agriculture, Financial Services, and Information Technology sectors.

The worldwide impact of Conti is significant. So much in fact that the U.S. Department of State is offering rewards of up to $10 million for information that leads to the identification or location of any individual who holds a key leadership position in the Conti crime group. To learn more about Conti attacks, visit Data Breach Today’s website where more than 200 articles have been published.

Recently, Tenable has published the list of vulnerabilities used by Conti together with their Vulnerability Priority Rating (VPR) scores to understand the criticality of each vulnerability. Conti uses a variety of attack vectors including phishing, malware and attacks against Remote Desktop Protocol. Tenable lists 9 initial access vulnerabilities and 24 elevation of privilege vulnerabilities. Tenable will be releasing scan templates soon, and in the meantime, organizations can leverage their ContiLeaks Dashboards for Tenable.io and Tenable.sc to identify the known vulnerabilities exploited by the Conti ransomware group and its affiliates.

BigFix can quickly remediate 29 of the 33 vulnerabilities. BigFix Insights for Vulnerability Remediation enables IT Operations and Security teams to minimize the time and effort to identify and remediate vulnerabilities, creating an incredibly fast, powerful and effective solution for finding and remediating vulnerabilities that may lead to devastating cyberattacks.

Learn how BigFix can manage every endpoint before, during and after a cyberattack. Request a Free Trial or Demonstration of BigFix today!

1 https://www.state.gov/reward-offers-for-information-to-bring-conti-ransomware-variant-co-conspirators-to-justice

Comment wrap
Further Reading
article-img
Automation | May 19, 2022
Why NOW is the Time to Unify IT Ops and Security
Security threats are evolving fast. CIO.COM has published a series of articles that delve into how to rapidly align IT Ops and security teams to enhance overall security posture prior to, during, and after an attack.
article-img
Automation | May 15, 2022
BigFix Supports NIST Cybersecurity Framework for Ransom Risk Management  
According to a recent threat intelligence report, ransomware has become the most popular attack method, making up 21% of all the security attacks in 2021. HCL offers two whitepapers to help IT organizations implement the recently published NIST Ransomware Profile.
article-img
Automation | May 11, 2022
Kuppingercole Speaks about BigFix
Organizations requiring a single solution for endpoint management across server, datacenter, laptops and mobile devices as well as strong compliance enforcementcapabilities would do well to consider HCL BigFix.
Close
Filters result by
Sort:
|