What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-04-26 12:45:55 | The State of Ransomware in the Retail Sector (lien direct) |
How many ransomware attacks did Retailers suffer in 2021? As reported by Infosecurity Magazine, the volume of ransomware attacks grew 105% between 2020 and 2021 to 623 million attack attempts. Much of this growth took place in the Public sector, with government agencies encountering a rise of 1885%. |
Ransomware | ★★ | |
|
2022-04-13 15:38:18 | Webinar April 26th: Profile of the Dark Economy of Ransomware (lien direct) |
Ransomware operators have steadily become more sophisticated and more aligned with nation-state actors making ransomware an existential threat for enterprises. |
Ransomware Threat | ||
|
2022-04-12 12:05:04 | White Paper: Inside Complex RansomOps and the Ransomware Economy (lien direct) |
Ransomware operations have transformed dramatically over the last few years from a small cottage industry conducting largely nuisance attacks to a highly complex business model that is extremely efficient and specialized with an increasing level of innovation and technical sophistication. |
Ransomware | ||
|
2022-04-05 13:15:06 | Ransomware vs. AI: The Battle Between Machines (lien direct) |
According to recent reporting, the majority of respondents said their organizations were targeted by a ransomware attack in 2021. In an independent global study covered by Forbes, 80% of IT and security professionals indicated that ransomware attacks had hit their organizations during the year. |
Ransomware | ||
|
2022-04-01 13:30:20 | Undefeated in MITRE ATT&CK Evaluations - Undefeated Against Ransomware (lien direct) |
MITRE ATT&CK Enterprise Evaluations have radically accelerated the effectiveness of today's cyber defenses the world over. These unbiased and transparent tests push vendors to develop and prove that their technology can stand up against today's most determined and sophisticated adversaries.
This year, Cybereason achieved the best results in the history of these evaluations:
Cybereason leads the industry in the MITRE ATT&CK Enterprise Evaluation 2022 |
Ransomware Guideline | ||
|
2022-04-01 05:00:00 | (Déjà vu) Webinar April 14th: Live Attack Simulation - Ransomware Threat Hunter Series (lien direct) |
Ransomware has the potential to affect any organization with exposed defenses. The challenges presented by a multi-stage ransomware attack to large organizations with a mature security team in place are unique and require an informed response.
Join this session to learn more about how mature security teams can more effectively manage a modern ransomware operation and avoid a system-wide takeover by bad actors - delivered through a step-by-step walkthrough of an attack:
Why ransomware continues to evolve & common delivery methods
The differences and similarities between ransomware and other forms of malware
Common methods attackers use to escalate their operations
Reliable techniques Defenders can use to end active ransomware operators in their environments
|
Ransomware Threat | ||
|
2022-03-29 13:15:18 | How to Create an Effective Ransomware Response Plan (lien direct) |
The volume of ransomware attacks was unprecedented in 2021. For instance, in the third quarter of the year, security researchers documented 190.4 million ransomware attempts. This volume made Q3 2021 the highest quarter ever recorded, reported Help Net Security. The period almost surpassed the 195.7 million ransomware attack attempts logged during the first nine months of the previous year. |
Ransomware | ||
|
2022-03-25 20:02:36 | Webinar April 7th: 2021 MITRE ATT&CK Evaluations Explained (lien direct) |
The 2021 Round 4 MITRE ATT&CK evaluations focused on Wizard Spider and Sandworm, threat actor groups known to target large corporations and healthcare institutions. Wizard Spider is largely a financially motivated ransomware crime group conducting campaigns since 2017. The Sandworm team is a Russian Threat group that has been linked to the 2015 and 2016 targeting of Ukrainian electrical companies and the 2017 NotPetya attacks. |
Ransomware Threat | NotPetya NotPetya | |
|
2022-03-22 13:34:39 | The State of Ransomware in the Manufacturing Sector (lien direct) |
How many ransomware attacks did the Manufacturing Sector suffer in 2021? According to research, 21% of ransomware attacks targeted manufacturing organizations in 2020, and it was a similar story in 2021. |
Ransomware | ||
|
2022-03-22 13:15:00 | Cybereason vs. Carbon Black: Why Delayed Detections Matter (lien direct) |
The U.S. Treasury Department estimates that U.S. companies have paid $1.6 billion in ransomware attacks since 2011. Given the lucrative nature of ransomware attacks, the threat shows no signs of diminishing.
In fact, the ransomware threat is constantly changing and evolving as attackers use more and more sophisticated techniques and vulnerabilities to gain access to organizations' data and networks. |
Ransomware Threat | ||
|
2022-03-17 20:48:23 | (Déjà vu) Webinar March 31st: Live Attack Simulation - XDR vs. Modern Ransomware (lien direct) |
Throughout history, sometimes truth ends up being even stranger than fiction. Today's parade of multi-million dollar ransomware payout headlines is no exception: cybercriminals and ransomware gangs are outgunning prevention tech and response strategies. Attackers are operationalizing exploits at a record rate, targeting more organizations and are operating to reduce dwell time. |
Ransomware | ||
|
2022-03-15 12:50:33 | Leveraging Artificial Intelligence to Prevent RansomOps Attacks (lien direct) |
Ransomware attacks increased dramatically in both volume and sophistication throughout 2021. As reported by Help Net Security, researchers observed a 148% increase in global ransomware attacks through the third quarter (Q3) of 2021. This brought the total volume of ransomware infections up to 470 million for the year's first nine months. |
Ransomware | ||
|
2022-03-09 14:27:56 | SecOps: Getting Behind the Wheel with XDR (lien direct) |
Earlier this year, we weighed the costs of ransomware prevention and recovery. This article ties into a greater discussion regarding the differences between taking an assertive, proactive approach versus a reactive approach to digital security. Let's now wade into this conversation directly. |
Ransomware | ||
|
2022-03-08 14:53:12 | Threat Detection: Making the Complicated Simple Again (lien direct) |
There are certain immutable things in cybersecurity; the volume of threats will only ever grow, the acceptable time for businesses to be offline will only get shorter. What is clear is the longer you are breached, the greater the potential for business disruption and commercial impact, and ransomware has moved that scale from days or weeks to hours or minutes. |
Ransomware | ||
|
2022-03-08 14:46:56 | The Impact of Ransomware in the Healthcare Sector (lien direct) |
How many ransomware attacks did the Healthcare sector suffer in 2021? In a recent survey of healthcare organizations, 34% of respondents indicated they had suffered a ransomware attack in 2021. The healthcare sector thereby fared better than the global average of 37% for all industries combined. It also came in under retail and education, sectors where 44% of respondents revealed that they had weathered an infection. |
Ransomware | ||
|
2022-03-01 13:37:07 | Cybereason vs. BlackCat Ransomware (lien direct) |
Since its first emergence in November 2021, the Cybereason Nocturnus team has been tracking the BlackCat Ransomware (aka ALPHV), which has been called “2021's most sophisticated ransomware”. |
Ransomware | ||
|
2022-02-22 14:00:45 | Three Questions to Ask about Ransomware Preparedness (lien direct) |
Ransomware operations, or RansomOps™, have evolved dramatically over the last few years, growing from a small subset of mostly nuisance attacks to a mature business model specialization and an increasing pace of innovation and technical sophistication. |
Ransomware | ||
|
2022-02-22 13:56:36 | Malicious Life Podcast: Why Do APTs Use Ransomware? (lien direct) |
Complex cybercrime attacks are increasingly showing more overlap with nation-state sponsored attacks, with some cybercriminal groups adopting more sophisticated TTPs and attack progressions, and some APTs adopting ransomware payloads to distract, disrupt and destroy targeted systems. |
Ransomware | ||
|
2022-02-18 20:13:33 | Shields Up: Is Your Ransomware Protection What It Should Be? (lien direct) |
The recent 'Shields Up' initiative from the Cybersecurity and Infrastructure Security Agency (CISA), an effort to warn businesses and critical infrastructure operators to prepare for cyberattacks coinciding with the imminent Russian invasion of Ukraine, may have one critical weak spot: ransomware protection. |
Ransomware | ||
|
2022-02-17 08:00:00 | Webinar March10th 2022: Live Attack Simulation - XDR vs. No-Macro RansomOps (lien direct) |
Throughout history, sometimes truth ends up being even stranger than fiction. Today's parade of multi-million dollar ransomware payout headlines is no exception: cybercriminals and ransomware gangs are outgunning prevention tech and response strategies. Attackers are operationalizing exploits at a record rate, targeting more organizations and are operating to reduce dwell time. |
Ransomware | ||
|
2022-02-15 13:18:00 | How to Prevent Ransomware Attacks at the Earliest Stages (lien direct) |
Ransomware attacks are one of the most challenging threats organizations face today. At the same time, it is difficult, if not impossible, for private-sector Defenders to draw a clear distinction between attacks supporting nation-state geopolitical interests and a good deal of the more complex ransomware attacks we see today. |
Ransomware | ||
|
2022-02-09 08:00:00 | (Déjà vu) Webinar March 9th 2022: Protecting Containers at Runtime with Cybereason XDR for Cloud Workloads (lien direct) |
Ransomware has the potential to affect any organization with exposed defenses. The challenges presented by a multi-stage ransomware attack to large organizations with a mature security team in place are unique and require an informed response. |
Ransomware | ||
|
2022-02-08 18:57:04 | Cybereason vs. Lorenz Ransomware (lien direct) |
Lorenz is a ransomware strain observed first in February of 2021, and is believed to be a rebranding of the “.sZ40” ransomware that was discovered in October 2020. Lorenz targets organizations worldwide with customized attacks demanding hundreds of thousands of dollars, and even millions in ransom fee. |
Ransomware | ||
|
2022-02-08 14:13:21 | Financial Services and the Evolving Ransomware Threat (lien direct) |
There's no doubt about it, ransomware attackers are increasingly targeting organizations in the financial services sector. As reported by Berkley Financial Specialists, financial institutions reported 635 ransomware-related events in the first half of 2021. That's a 30% increase over the same from the previous year. |
Ransomware Threat | ||
|
2022-02-08 10:00:00 | (Déjà vu) Webinar February 24th 2022: Live Attack Simulation - Ransomware Threat Hunter Series (lien direct) |
Ransomware has the potential to affect any organization with exposed defenses. The challenges presented by a multi-stage ransomware attack to large organizations with a mature security team in place are unique and require an informed response. |
Ransomware Threat | ||
|
2022-02-01 05:02:00 | StrifeWater RAT: Iranian APT Moses Staff Adds New Trojan to Ransomware Operations (lien direct) |
Over the past months, the Cybereason Nocturnus Team has been tracking the Iranian hacker group known as Moses Staff. The group was first spotted in October 2021 and claims their motivation is to harm Israeli companies by leaking sensitive, stolen data. |
Ransomware | ||
|
2022-01-24 14:05:07 | Ten of the Biggest Ransomware Attacks of 2021 (lien direct) |
There were nearly 500 million ransomware attacks in the first half of 2021. As reported by Help Net Security, security researchers detected 190.4 million ransomware attempts in Q3 2021 alone, which brought the total volume of attacks up to 470 million at the beginning of October. The researchers went on to predict that there would be a total of 714 million ransomware attacks by the end of the year, constituting a 134% year-over-year increase from 2020. |
Ransomware | ||
|
2022-01-19 15:03:25 | Five Ransomware Myths that Leave Businesses Vulnerable (lien direct) |
In June 2021, The Washington Post identified five ransomware myths that could cloud organizations' security strategies. It's been a few months since the list was released, so Let's see how those myths are looking as we launch into Q1 of 2022: |
Ransomware | ||
|
2022-01-19 10:00:00 | (Déjà vu) Webinar February 3rd 2022: Live Attack Simulation - Ransomware Threat Hunter Series (lien direct) |
Ransomware has the potential to affect any organization with exposed defenses. The challenges presented by a multi-stage ransomware attack to large organizations with a mature security team in place are unique and require an informed response. |
Ransomware Threat | ||
|
2022-01-11 10:00:00 | The State of Ransomware in the Public Sector (lien direct) |
Government agencies have seen plenty of ransomware attacks over the course of this past year. According to ZDNet, malicious actors used ransomware to target government entities more than any other sector in H1 2021. |
Ransomware | ||
|
2021-12-21 13:12:29 | History\'s Most Notorious Ransomware Gangs (lien direct) |
In a recent study, titled Ransomware: The True Cost to Business, we found that the costs of ransomware have increased for organizations. We learned that two-thirds of organizations experienced significant revenue loss following a ransomware attack, for instance. |
Ransomware | ||
|
2021-12-13 13:08:24 | Malicious Life Podcast: Ransomware Attackers Don\'t Take Holidays (lien direct) |
In November of 2021, Cybereason released a special report, titled Organizations at Risk: Ransomware Attackers Don't Take Holidays, focusing on the threat of ransomware attacks during weekends and holidays. Nate Nelson, our senior producer, talked with Ken Westin, Director of Security Strategy at Cybereason, about why attackers love holidays and weekends, and why ransomware attacks during these times are so effective and dangerous - check it out... |
Ransomware Threat | ||
|
2021-12-10 02:00:00 | (Déjà vu) Webinar January 11th 2022: Live Attack Simulation - Ransomware Threat Hunte (lien direct) |
Ransomware has the potential to affect any organization with exposed defenses. The challenges presented by a multi-stage ransomware attack to large organizations with a mature security team in place are unique and require an informed response. |
Ransomware Threat | ||
|
2021-12-07 13:12:31 | Ransomware by the Numbers – An Impact Overview (lien direct) |
The number of global ransomware attacks is on the rise. According to Threatpost, the global volume of ransomware operations reached 304.7 million attacks in H1 2021. That's a year-over-year increase of 151%. What's more, that's 100k+ more attack attempts than what security researchers detected in all of 2020. |
Ransomware | ||
|
2021-12-06 16:46:14 | Under the Hood: What Artificial Intelligence on the Endpoint Looks Like (lien direct) |
In light of a recent Cybereason research report, Organizations at Risk: Ransomware Attackers Don't Take Holidays, regarding the prevalence of ransomware attacks that occur during off-hours, it's imperative that we look towards robust AI security solutions, such that you can know your organization is protected even when none of your staff is online. |
Ransomware | ||
|
2021-12-03 19:01:52 | Cl0p Ransomware Gang Tries to Topple the House of Cards (lien direct) |
When I wrote the introduction for our recent report Organizations at Risk: Ransomware Attackers Don't Take Holidays, I described current factors and trends with the potential to disrupt the upcoming holiday season. |
Ransomware | ||
|
2021-12-02 16:07:45 | Planned Parenthood Ransomware Attack Has Far Reaching Implications (lien direct) |
The Planned Parenthood Los Angeles affiliate announced that their computer network was hit by a ransomware attack. The compromise occurred between October 9 and 17 and affected around 400,000 patients' data. |
Ransomware | ||
|
2021-12-02 15:42:07 | Planned Parenthood Ransomware Attack Puts Lives at Risk (lien direct) |
The Planned Parenthood branch in Los Angeles revealed that it was the victim of a ransomware attack that resulted in attackers obtaining sensitive information on about 400,000 patients. All ransomware attacks and data breaches are bad, but this one is particularly egregious because the sensitive nature of the compromised information could destroy families or possibly put lives in danger. |
Ransomware | ||
|
2021-12-01 14:02:43 | Ransomware Underscores Need for Layered, Predictive Defenses (lien direct) |
A congressional investigation into the ransomware attacks that targeted CNA Financial Corp., Colonial Pipeline Co., and JBS Foods USA found that in all three cases the attackers exploited “small failures” in the security postures of the companies. |
Ransomware | ||
|
2021-11-30 13:40:01 | A Brief History of Ransomware Evolution (lien direct) |
Wondering where the scourge of ransomware attacks currently stands? In a recent report titled Ransomware: The True Cost to Business, we noted that ransomware attacks occur about every 11 seconds. That rate translates into about 3 million ransomware attacks over a year. |
Ransomware | ||
|
2021-11-29 06:00:00 | Webinar December 1st: Ransomware Attackers Don\'t Take Holidays (lien direct) |
Cybereason recently released a research report, titled Organizations at Risk: Ransomware Attackers Don't Take Holidays, that focuses on the threat that ransomware attacks during the weekends and holidays pose to organizations as we move into the holiday season. The global survey includes responses from 1,200+ security professionals at organizations that have previously suffered a successful ransomware attack. |
Ransomware Threat | ||
|
2021-11-23 13:29:20 | Which Data Do Ransomware Attackers Target for Double Extortion? (lien direct) |
Double extortion is one of the most prevalent ransomware tactics today. The attackers first exfiltrate sensitive information from their target before launching the ransomware encryption routine. The threat actor then demands a ransom payment in order to regain access to the encrypted assets along with an additional threat to publicly expose or otherwise release the data if the ransom demand is not met promptly. |
Ransomware Threat | ||
|
2021-11-17 05:03:00 | Cybereason Research Finds Organizations Unprepared for Ransomware Attacks on Weekends and Holidays (lien direct) |
In June of 2021, Cybereason published a global research report, titled Ransomware: The True Cost to Business, which revealed that the vast majority of organizations that have suffered a ransomware attack experienced significant impact to the business as a result. The consequences included loss of revenue, damage to the organization's brand, unplanned workforce reductions, and disruption of business operations. |
Ransomware | ||
|
2021-11-17 05:02:00 | Predictive Ransomware Protection: The Key to Ending a Global Crisis (lien direct) |
Successful ransomware attacks take time. They involve gaining a foothold in the enterprise, conducting reconnaissance, escalating privileges, and then locating and exfiltrating your organization's most sensitive data. The entire process, up until the point that the attackers encrypt your data, could take weeks or months. |
Ransomware | ||
|
2021-11-16 14:28:03 | RansomOps: Detecting Complex Ransomware Operations (lien direct) |
In a recent blog post we discussed how today's more complex RansomOps attacks are more akin to stealthy APT-like operations than the old “spray and pray” mass email spam campaign of old, and how there are multiple players from the larger Ransomware Economy at work, each with their own specializations. |
Ransomware Spam | ||
|
2021-11-12 12:52:05 | Ransomware Whack-a-Mole (lien direct) |
Pretty much everyone is familiar with the carnival game Whack-a-Mole. No matter how many moles you bash with the mallet, it seems like two more pop up in its place. It's commonly used to describe cybersecurity and the ransomware news this week illustrates why Whack-a-Mole is an appropriate metaphor. |
Ransomware | ||
|
2021-11-09 18:46:51 | (Déjà vu) THREAT ANALYSIS REPORT: From Shatak Emails to the Conti Ransomware (lien direct) |
The Cybereason Global Security Operations Center (GSOC) issues Cybereason Threat Analysis reports to inform on impacting threats. The Threat Analysis reports investigate these threats and provide practical recommendations for protecting against them. |
Ransomware Threat | ||
|
2021-11-09 13:50:36 | The Ransom Disclosure Act and Defending Against Complex RansomOps (lien direct) |
On October 5, U.S. Senator Elizabeth Warren (D-Mass.) introduced the Ransom Disclosure Act. She framed it as something that could help the U.S. government learn more about how ransomware operations work. |
Ransomware | ||
|
2021-11-08 21:46:59 | Zero Trust Race is On: Do You Have the Right Engine? (lien direct) |
The shift to a Zero Trust security model has become a top priority for many organizations, driven by record levels of ransomware attacks and a rapidly expanding attack surface stemming from the move to remote work and accelerated cloud adoption. |
Ransomware | ||
|
2021-11-03 20:34:19 | Webinar November 18th: Anatomy of a Ransomware Attack (lien direct) |
Join Cybereason CEO and co-founder Lior Div and CSO Sam Curry as they break down the anatomy of a ransomware attack. Learn how Cybereason enables defenders to protect themselves and orchestrate the best ransomware defenses. |
Ransomware |
To see everything:
Our RSS (filtrered)
