• Latest
  • Trending
  • All
  • Industry
  • Compliance
  • Global Trade
  • Industry
  • Sustainability & Ethics
  • Video
  • Security & Risk
A computer monitor displaying a server in the background, prone to potential threats from hackers and susceptible to Mimic Ransomware.

Hackers Target Exposed MS SQL Servers with Mimic Ransomware in Recent Campaign

01/10/2024
Mass Logistics Ghana Ltd: Delivering Excellence in Customs Brokerage and Freight Forwarding

Mass Logistics Ghana Ltd: Delivering Excellence in Customs Brokerage and Freight Forwarding

08/27/2025
YAZ Bilgi Sistemleri: Driving Digital Transformation Across Banking and Enterprise Sectors

YAZ Bilgi Sistemleri: Driving Digital Transformation Across Banking and Enterprise Sectors

08/27/2025
Euromak Broker: Pioneering Insurance & Reinsurance Brokerage in North Macedonia

Euromak Broker: Pioneering Insurance & Reinsurance Brokerage in North Macedonia

08/27/2025
EES Shipping Launches Free Global Tariffs & Rules Lookup Tool

EES Shipping Launches Free Global Tariffs & Rules Lookup Tool

08/27/2025
Mass Logistics Ghana Ltd Nominated for Go Global Awards 2025 in London

Mass Logistics Ghana Ltd Nominated for Go Global Awards 2025 in London

08/27/2025
U.S. Raises Tariffs on India to 50% Amid Dispute Over Russian Oil

U.S. Raises Tariffs on India to 50% Amid Dispute Over Russian Oil

08/27/2025
Tariff Threats Cited by Trump in India-Pakistan Diplomacy

Tariff Threats Cited by Trump in India-Pakistan Diplomacy

08/27/2025
Euromak Broker Nominated for Go Global Awards 2025 in London

Euromak Broker Nominated for Go Global Awards 2025 in London

08/27/2025
India’s Modi to Visit China as Tariffs Reshape Trade Strategy

India’s Modi to Visit China as Tariffs Reshape Trade Strategy

08/27/2025
Tariffs on Indian Exports Spur Government Focus on Self-Reliance and Consumption

Tariffs on Indian Exports Spur Government Focus on Self-Reliance and Consumption

08/27/2025
Trump Tariffs Prompt Global South to Explore Alternative Trade Pathways

Trump Tariffs Prompt Global South to Explore Alternative Trade Pathways

08/27/2025
U.S. to Maintain 27.5% Tariff on European Cars Until E.U. Acts on U.S. Exports

Athena Global Logistics Launches Free Global Tariff Lookup Tool

08/27/2025
supplychainreport
Thursday, August 28, 2025
  • Home
  • Industry
    • Supply Chain
    • Logistics & Transportation
    • Importing & Exporting
    • Manufacturing
    • Warehousing & Distribution
  • Compliance
    • Supply Chain Transparency
    • Anti-Money Laundering (AML)
    • Know Your Customer (KYC)
    • Risk Management
    • Export Controls
    • Sanctions
  • Global Trade
    • Market Trends
    • Economic Indicators
    • Sourcing
    • Trade Policies
    • International Relations
    • Trade Agreements
    • Tariffs & Duties
    • Import/Export Statistics
  • Luxury Goods
  • Industry
    • Blockchain in Supply Chain
    • Importing & Exporting
    • Automation & Robotics
    • Artificial Intelligence in Trade
    • Data & Analytics
  • Sustainability & Ethics
    • Green Supply Chains
    • Sustainable Logistics
    • Ethical Sourcing
    • Corporate Social Responsibility
    • Environmental Policies
  • Security & Risk
    • Cybersecurity in Trade
    • Fraud & Scams
    • Risk Mitigation
    • Security Protocols
    • Data Protection
  • ITC News
    • ITC Featured Members
    • ITC Business Councils Highlights
  • Events
    • Upcoming Conferences
    • Upcoming FREE Educational Webinars
No Result
View All Result
supplychainreport
No Result
View All Result

Hackers Target Exposed MS SQL Servers with Mimic Ransomware in Recent Campaign

by Richie
01/10/2024
in Cybersecurity in Trade, Data & Analytics, Industry, Risk Mitigation, Security & Risk

YOU MAY ALSO LIKE

Mass Logistics Ghana Ltd: Delivering Excellence in Customs Brokerage and Freight Forwarding

YAZ Bilgi Sistemleri: Driving Digital Transformation Across Banking and Enterprise Sectors

Security researchers have identified a recent campaign in which hackers are actively targeting exposed MS SQL servers using the Mimic ransomware. Mimic ransomware, initially discovered in June 2022 and analyzed by Trend Micro researchers in January 2023, exhibits sophisticated capabilities, leveraging the APIs of a Windows filename search engine called Everything for file searches. The ransomware can perform actions such as deleting shadow copies, terminating processes and services, unmounting virtual drives, and activating anti-shutdown and anti-kill measures. Encrypted files carry the .QUIETPLACE file extension.

Trend Micro researchers observed that Mimic shares certain code similarities with the Conti ransomware builder leaked in March 2022, suggesting a potential connection. The ransomware specifically targets Russian and English-speaking users.

In the recent campaign, hackers gained access to compromised MS SQL servers through brute force attacks. Once an admin account was compromised, they utilized the xp_cmdshell procedure for command execution, system enumeration, and deploying a heavily obfuscated Cobalt Strike payload. The AnyDesk remote access tool was also employed in the attack. Persistence was achieved by creating a local user and adding it to the “administrators” group.

The attackers followed a systematic approach, involving system discovery, lateral movement, and, ultimately, deploying the Mimic ransomware using AnyDesk. The entire timeline of events spanned approximately one month from the initial access to the deployment of Mimic ransomware on the victim domain, as noted by Securonix researchers.

This financially motivated hacking group primarily targets countries in the US, EU, and LATAM regions. The campaign’s conclusion typically involves either selling access to the compromised host or delivering ransomware payloads, according to the researchers.

This campaign bears resemblance to a previous one identified by Securonix researchers in the previous year, highlighting a recurring pattern of MS SQL server targeting and Mimic ransomware delivery. Additionally, a campaign documented in early 2020 saw attackers utilizing poorly secured MS SQL servers to install cryptocurrency miners, indicating a historical trend of exploiting SQL server vulnerabilities for various malicious purposes.

Catch the latest in supply chain news on The Supply Chain Report. Visit ADAMftd.com for free international trade tools.

#MimicRansomware #CyberSecurity #TrendMicro #SQLServerExploitation #RansomwareAttacks #CobaltStrike #RemoteAccessTools #HackingCampaign #MalwareAnalysis #DataSecurity #ITSecurity #BruteForceAttack #CyberThreats #Securonix #MaliciousSoftware #InformationSecurity

ShareTweet

Subscribe Our Newsletter

Share Your News

Whether it’s a groundbreaking achievement, a heartwarming tale, or an insightful perspective, we want to hear it. Share your news with us, and let’s amplify your voice in the digital symphony of stories.

Submit

A man is riding a bike on a hill.

The Supply Chain Report is your essential daily news website, serving as a trusted source for comprehensive coverage of the complex and ever-evolving global supply chain dynamics. Our expert team delves into the intricacies of international trade, manufacturing, logistics, importing, exporting, and supply chain management; providing in-depth analysis and up-to-date news on the latest trends, disruptions, and technological advancements affecting industries worldwide. From detailed reports on international trade through to insights into procurement strategies and inventory management, we offer valuable content that helps professionals stay informed and make knowledgeable decisions in a fast-paced market.

Each day, we bring you cutting-edge news and expert commentary that dissect significant international trade and supply chain issues Our coverage spans a wide array of sectors including manufacturing, retail, healthcare, food, consumer goods, and technology, ensuring that no matter your field, you have the strategic information needed to navigate the challenges and opportunities of today’s supply chain landscape. By synthesizing complex data and presenting actionable insights, The Supply Chain Report empowers business leaders, policymakers, and logistics professionals to optimize their operations and drive forward with confidence in an interconnected world.

Connect With Us

  • About
  • Events
  • Privacy Policy
  • Contact Us

© 2024 International Centre for Trade Transparency Limited. Incorporated in the United Kingdom.

No Result
View All Result
  • Home
  • Industry
    • Supply Chain
    • Logistics & Transportation
    • Importing & Exporting
    • Manufacturing
    • Warehousing & Distribution
  • Compliance
    • Supply Chain Transparency
    • Anti-Money Laundering (AML)
    • Know Your Customer (KYC)
    • Risk Management
    • Export Controls
    • Sanctions
  • Global Trade
    • Market Trends
    • Economic Indicators
    • Sourcing
    • Trade Policies
    • International Relations
    • Trade Agreements
    • Tariffs & Duties
    • Import/Export Statistics
  • Luxury Goods
  • Industry
    • Blockchain in Supply Chain
    • Importing & Exporting
    • Automation & Robotics
    • Artificial Intelligence in Trade
    • Data & Analytics
  • Sustainability & Ethics
    • Green Supply Chains
    • Sustainable Logistics
    • Ethical Sourcing
    • Corporate Social Responsibility
    • Environmental Policies
  • Security & Risk
    • Cybersecurity in Trade
    • Fraud & Scams
    • Risk Mitigation
    • Security Protocols
    • Data Protection
  • ITC News
    • ITC Featured Members
    • ITC Business Councils Highlights
  • Events
    • Upcoming Conferences
    • Upcoming FREE Educational Webinars

© 2024 International Centre for Trade Transparency Limited. Incorporated in the United Kingdom.