FBI Alert: Ransomware Surge

Gigabit Systems

June 8, 2025

•

20 min read

Share this post

🔥 FBI Alert: Ransomware Surge Hits 900+ Organizations — Is Yours Next?

The FBI and CISA just dropped a critical cyberattack advisory.

Play ransomware is exploding in volume — with over 900 confirmed victims in just one wave of attacks. Healthcare providers, law firms, schools, and SMBs are all in the crosshairs.

This isn’t just noise. It’s a national-level security bulletin, and your business should act right now.

What is Play Ransomware?

Play is a sophisticated, stealthy ransomware threat believed to be linked to North Korea’s Andariel group, distributed via the cybercrime group Balloonfly.

🧨 Here’s what makes Play so dangerous:

Victims receive no ransom amount, only a custom email address
Attackers may call the victim directly to pressure payment
They use remote access services, like RDP and VPN, to get in
Known to exploit zero-day Windows and Fortinet vulnerabilities

Once inside, they move fast:

🛠️ Cobalt Strike

🛠️ PsExec

🛠️ Mimikatz

🛠️ SystemBC

📂 Lateral movement, admin privilege escalation, encryption, and exfiltration

Which Vulnerabilities Are Being Exploited?

CVE-2025-29824 – Windows CLFS (patched in April 2025)
CVE-2022-41040 / 41082 – Microsoft Exchange Server
CVE-2020-12812 / 2018-13379 – Fortinet FortiOS

What the FBI Says You Must Do Immediately:

At Gigabit Systems, we’re helping organizations deploy these critical mitigation tactics today:

✅ Maintain segmented, offsite backups

✅ Enforce MFA everywhere

✅ Set strong password policies (15+ characters)

✅ Lock down after multiple failed logins

✅ Block unused ports and email links

✅ Require admin rights for software installs

✅ Patch immediately — OS, firmware, and apps

✅ Disable PowerShell and scripting tools unless essential

✅ Log and monitor unusual command-line behavioris isn’t just about cyber hygiene anymore. This is survival strateg

If You Think You’re Too Small to Be Targeted…

Ask any of the 900+ confirmed victims — most didn’t think they were either.

🔁 Share with any colleague running unpatched Exchange, Fortinet, or Windows services.

Follow me for mind-blowing information and cybersecurity news. Stay safe and secure!

Because 70% of all cyberattacks target small businesses—

I can help protect yours.

#CyberSecurity #Ransomware #FBIAlert #ManagedITServices #DataProtection

Share this post

See some more of our most recent posts...

Technology

Cybersecurity

News

Nevada’s Government Hit by Sophisticated Ransomware Attack, Inside the Full Breakdown

November 12, 2025

•

20 min read

Nevada’s Government Hit by Sophisticated Ransomware Attack, Inside the Full Breakdown

A Transparent Look at How the Hack Happened

The State of Nevada has released a rare, fully transparent after-action report detailing how cybercriminals infiltrated more than 60 government agencies in August — crippling websites, communication systems, and online services across the state.

Despite widespread disruption, Nevada refused to pay a ransom. Within 28 days, the state’s IT teams restored 90% of all critical systems — earning praise for its resilience and transparency.

🕵️ How the Attack Started

The breach began months earlier, on May 14, when a state employee unknowingly downloaded a trojanized version of a legitimate system administration tool.

The employee searched Google for the tool, clicked a malicious search ad, and installed a fake version laced with malware.
Once executed, the program created a hidden backdoor that reconnected to the attackers’ infrastructure every time the employee logged in.

This tactic — using malvertising to target IT professionals — has become increasingly common, with fake versions of WinSCP, AnyDesk, KeePass, and other admin tools used to breach corporate and government systems.

💻 From Backdoor to Ransomware

Even after Symantec Endpoint Protection flagged and quarantined the malware in June, the attacker’s persistence mechanism remained active.

By early August, the hackers installed commercial remote monitoring software, giving them access to keystrokes, screen recordings, and network data.

They then used Remote Desktop Protocol (RDP) sessions and custom encrypted tunnels to move laterally — reaching privileged servers, including the password vault.

The attackers stole credentials from 26 accounts, wiped event logs, and began staging data for exfiltration. Although investigators found no evidence the data was actually removed, over 26,000 files were accessed.

Finally, on August 24 at 8:30 UTC, the attackers deleted all backup volumes, disabled recovery mechanisms, and deployed ransomware across the state’s virtualized infrastructure.

Within 20 minutes, the Governor’s Technology Office detected the mass outage and initiated emergency response procedures.

🧩 Recovery Without Paying Ransom

Instead of paying cybercriminals, Nevada’s IT staff worked around the clock.

50 employees logged 4,200 overtime hours, costing $259,000.
The decision to rely on in-house recovery saved an estimated $478,000 compared to hiring external contractors.

External vendors, including Microsoft DART, Mandiant, and Dell, provided additional forensics, network rebuilding, and legal guidance — costing roughly $1.3 million in total.

Vendor

Service

Cost

Microsoft DART

Infrastructure rebuild

$354,481

Mandiant

Forensics & IR

$248,750

Aeris

Recovery support

$240,000

BakerHostetler

Legal & privacy counsel

$95,000

SHI (Palo Alto)

Network security

$69,400

Dell

Data recovery

$66,500

🔒 Strengthening Defenses

Following the attack, Nevada’s Governor’s Technology Office (GTO) took immediate steps to fortify systems:

Removed outdated accounts and security certificates
Reset all privileged passwords
Restricted access to sensitive infrastructure
Reviewed and hardened system rules and permissions

The report also highlights the need for continuous monitoring, rapid threat detection, and better staff training, as threat actors refine their techniques.

⚠️ Why It Matters

Nevada’s decision to release a full technical report sets a new standard for government transparency in cybersecurity.

The case also illustrates how a single malicious download can lead to statewide disruption — and how proper response playbooks and refusal to pay ransom can make recovery possible.

Must-Read

Technology

News

Kim Kardashian Says ChatGPT Made Her Fail Law Exams

November 11, 2025

•

20 min read

Kim Kardashian Says ChatGPT Made Her Fail Law Exams

When AI Confidence Meets Real-World Consequences

In a recent Vanity Fair interview, Kim Kardashian revealed that her reliance on ChatGPT for law exam prep backfired — spectacularly. The reality star, who earned her law degree earlier this year, admitted that OpenAI’s chatbot “kept giving wrong answers,” leading her to fail several legal exams before passing.

💻 The AI Study Partner That Failed the Test

Kardashian explained that she used ChatGPT to help with her bar studies, even taking photos of questions and asking the bot to explain the answers.

“They’re always wrong,” she said, laughing. “I failed multiple tests because I trusted ChatGPT.”

In the same conversation, she joked that the chatbot tried to be motivational — replying, “This is just teaching you to trust your instincts.” Kardashian said she scolded the bot after realizing that “encouraging” tone came with incorrect information.

⚖️ Why ChatGPT Struggles With Law

Experts note that generative AI tools like ChatGPT don’t actually understand legal material — or any subject matter. They use pattern prediction to generate text that sounds correct, without verifying factual accuracy.

This means while ChatGPT can explain legal concepts conversationally, it can’t reliably interpret complex statutes or case law. In high-stakes fields like law, that’s a critical flaw.

AI’s tendency to produce “hallucinations” — confident but false answers — has already misled lawyers, students, and even judges. Earlier this year, multiple U.S. attorneys were sanctioned for submitting fake case citations generated by ChatGPT.

🎬 Pop Culture Meets AI Hype

The revelation came during Vanity Fair’s lie detector interview with actress Teyana Taylor, while both stars promoted their Hulu legal drama All’s Fair. Critics widely panned the show, giving it an 18/100 on Metacritic — though Kardashian’s comments on AI quickly stole the spotlight.

Her experience reflects a growing reality: even public figures and business leaders are falling into AI’s confidence trap — mistaking fluent language for real intelligence.

🧠 Why It Matters

Kardashian’s story underscores a crucial point about trust and technology: AI can imitate expertise but not replace it. As tools like ChatGPT become fixtures in classrooms, offices, and even courtrooms, users must remember its limitations.

AI can inspire and assist — but when it comes to law, medicine, or education, accuracy and accountability still belong to humans.

Must-Read

Cybersecurity

Tips

Technology

8 Powerful Windows Shortcuts Every User Should Know

November 16, 2025

•

20 min read

8 Powerful Windows Shortcuts Every User Should Know

Unlock Hidden Tools That Make Windows Work Smarter

Most people use their computers every day without realizing just how many shortcuts are built right into Windows. These time-saving commands can fix problems, boost performance, and make you look like an IT pro — no software required.

Here are 8 powerful Windows shortcuts (and how to use them) that every professional should know.

1. Instantly Restart Your Graphics Card

If your screen freezes or you get sudden graphical glitches, you don’t need to reboot your PC.

Shortcut: Ctrl + Shift + Win + B

This command restarts your graphics driver in seconds — your screen will briefly go black and then return to normal. It works for both NVIDIA and AMD GPUs.

2. Wirelessly Share Your Screen or Project to Another Display

Need to show a presentation or mirror your laptop to a TV?

Shortcut: Win + K

This opens the Cast menu, where you can connect to any Miracast-compatible display or wireless adapter. Great for conference rooms and smart TVs.

3. Run a Quick Virus Scan from Command Prompt

Windows Defender can be controlled entirely from the command line.

Shortcut: Open Command Prompt (Admin) → type:

MpCmdRun -Scan -ScanType 1

This runs a quick scan without opening the Windows Security app — handy for diagnosing suspicious activity.

4. Open the Secret Power User Menu

Forget digging through Control Panel.

Shortcut: Win + X

This brings up the Power User menu — a hidden control panel that lets you access Device Manager, Disk Management, Task Manager, and more with one click.

5. Capture and Copy a Screenshot to Clipboard

Need to grab part of your screen fast?

Shortcut: Win + Shift + S

This activates Snip & Sketch, allowing you to select a region, window, or full screen. The image automatically copies to your clipboard — perfect for quick documentation.

6. Open the Clipboard History

Tired of copying one thing at a time?

Shortcut: Win + V

Clipboard History shows everything you’ve recently copied — text, images, links — and lets you paste older items instantly. (You’ll need to enable it once.)

7. Snap and Manage Windows Like a Pro

Shortcut: Win + Arrow Keys

Easily split your screen between apps. Pressing these arrows moves windows to halves, corners, or another monitor. Combine with Win + Tab to manage virtual desktops.

8. Quickly Lock Your PC When You Step Away

Shortcut: Win + L

This instantly locks your screen, keeping data safe while you’re away. It’s one of the simplest — and most important — shortcuts for anyone working in an office or public space.

Why It Matters

Knowing these shortcuts isn’t just about efficiency — it’s about security, speed, and control. Whether you’re managing business systems, troubleshooting remotely, or multitasking, mastering these built-in commands helps keep your computer running at its best.