What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-12-01 17:00:00 | Treasury Crypto Security Sanction Blocks Exchange Favored by Ransomware Actors (lien direct) | The U.S. government sanctioned the cryptocurrency exchange SUEX for moving money for ransomware actors. In essence, that means U.S. citizens and corporate entities are banned from using it. The statement, released in September, is part of a wider effort to boost crypto security and “disrupt criminal networks and currency exchanges”. The First Crypto Security Sanction […] | Ransomware | ||
|
2021-12-01 14:00:00 | How to Cut Down on Data Breach Stress and Fatigue (lien direct) | If you’re tired of hearing the words ‘data breach’, you’re not alone. It’s looking like 2021 might end up becoming the year with the most ransomware attacks on record. In August, SonicWall reported that the global ransomware attack volume had increased 151% during the first six months of the year compared to H1 2020. The […] | Ransomware Data Breach | ||
|
2021-11-30 14:00:00 | Understanding the Adversary: How Ransomware Attacks Happen (lien direct) | IBM Security X-Force Incident Response (IR) has responded to hundreds of ransomware incidents across every geography and industry. As we have taken time to analyze these incidents, a clear pattern has emerged. Although we observe dozens of ransomware groups in operation across the globe, many with multiple affiliate groups working under them, most ransomware actors […] | Ransomware | ||
|
2021-11-24 17:00:00 | Proposed Bill Would Require Public Disclosure of Ransomware Payments (lien direct) | Two U.S. congresswomen introduced a bill that would require ransomware victims to publicly disclose ransom payments to the federal government. Introducing the ‘Ransom Disclosure Act’ In early October, Senator Elizabeth Warren (D-Mass.) and Representative Deborah Ross (D-N.C.) introduced a bill for the Ransom Disclosure Act. Senator Warren said the bill has two main goals. First, […] | Ransomware | ||
|
2021-11-24 14:00:00 | Hospital Ransomware Attacks Go Beyond Health Care Data (lien direct) | The health care industry has been on the front lines a lot lately. Along with helping control the effects of COVID-19, it has been a prime target for ransomware. In a 2021 survey conducted of 597 health delivery organizations (HDOs), 42% had faced two ransomware attacks in the past couple of years. Over a third […] | Ransomware | ||
|
2021-11-22 14:00:00 | The Cost of a Data Breach Goes Beyond the Bottom Line (lien direct) | How do you measure the cost of a company data breach? You could try asking those that have been attacked. The IBM Security Cost of a Data Breach Report 2021 did just that, and the numbers reveal some hard truths. For example, ransomware attacks cost an average of $4.62 million. These costs included escalation, notification, […] | Ransomware Data Breach | ||
|
2021-11-18 14:00:00 | Rising Cyber Insurance Premiums Highlight Importance of Ransomware Prevention (lien direct) | No insurance premiums saw greater growth in the second quarter of 2021 than those related to cybersecurity. According to the Council of Insurance Agents & Brokers, cyber insurance premiums grew more than a quarter (25.5%) during that period. That’s well above the 17.4% increase witnessed by umbrella insurance and an average of 8.3% growth across […] | Ransomware | ||
|
2021-11-09 11:00:00 | A New Cybersecurity Executive Order Puts the Heat on Critical Infrastructure Suppliers (lien direct) | Ransomware. Five years ago, the cybersecurity community knew that term well, although among others it was far from dinner table conversation. Times have changed. Since early 2020, ransomware has hit a slew of headlines. People inside and outside of the security industry are talking about it, and many have experienced the ransomware pain firsthand. The […] | Ransomware | ||
|
2021-11-01 10:00:00 | From Thanos to Prometheus: When Ransomware Encryption Goes Wrong (lien direct) | IBM Security X-Force researchers have recently reverse-engineered Prometheus ransomware samples as part of ongoing incident response operations. X-Force has found that samples that infected organizational networks featured flawed encryption. This allowed our team to develop a fast-acting decryptor and help customers recover from the attack without a decryption key. While rare, ransomware developers can make […] | Ransomware | ||
|
2021-10-28 17:00:00 | 2021 Cyber Resilient Organization Study: Rise of Ransomware Shows the Need for Zero Trust and XDR (lien direct) | “How many millions did you pay threat actors in a ransomware attack?” “Which investments most significantly improved cyber resiliency for your organization?” “Do you have a cybersecurity incident response plan that’s applied consistently across your enterprise?” The answers to these and other key questions produced several notable findings in the latest 2021 Cyber Resilient Organization […] | Ransomware Threat | ★★★★ | |
|
2021-10-28 13:00:00 | Roundup: 2021 Energy & Utility Data Breaches and Defenses in the News (lien direct) | Ransomware is evolving. How long until it takes down operational technology? In May 2021, Colonial Pipeline, one of the largest fuel pipelines in the United States, faced a ransomware attack. The company, which transports more than 100 million gallons of gasoline and other fuel daily from Houston to the New York Harbor, shut down work […] | Ransomware | ||
|
2021-10-27 16:00:00 | The Weaponization of Operational Technology (lien direct) | Contributed to this research: Adam Laurie and Sameer Koranne. Given the accelerating rise in operational technology (OT) threats, this blog will address some of the most common threats IBM Security X-Force is observing against organizations with OT networks, including ransomware and vulnerability exploitation. IBM will also highlight several measures that can enhance security for OT […] | Ransomware Vulnerability | ||
|
2021-10-26 19:00:00 | Data Security: How Data Activity Monitoring Protects Against Ransomware (lien direct) | Ransomware is an attack on your data. Can you say that your approach to preventing ransomware is focused on data? Organizations are becoming more aware of the chaos that ransomware can create — to the tune of $4.62 million in escalation, notification, lost business and response costs, according to the 2021 Cost of a Data […] | Ransomware | ||
|
2021-10-20 21:30:00 | Detections That Can Help You Identify Ransomware (lien direct) | One of the benefits of being part of a global research-driven incident response firm like X-Force Incidence Response (IR) is that the team has the ability to take a step back and analyze incidents, identifying trends and commonalities that span geographies, industries and affiliations. Leveraging that access and knowledge against the ransomware threat has revealed […] | Ransomware Threat | ||
|
2021-10-18 16:00:00 | A Journey in Organizational Resilience: Training and Testing (lien direct) | We are far from a breach-free world. After all, even cybercriminals have shown their own form of resilience. For example, after a short hiatus, the ransomware group REvil came back in September 2021. Until the day we can leave our ‘cyber front door’ unlocked, any organizational resilience framework you employ needs to include a healthy […] | Ransomware | ||
|
2021-10-14 16:00:00 | How to Report Scam Calls and Phishing Attacks (lien direct) | With incidents such as the Colonial Pipeline infection and the Kaseya supply chain attack making so many headlines these days, it can be easy to forget that malicious actors are still preying on individual users. They’re not using ransomware to do that so much anymore, though. Not since the rise of big game hunting, anyway. […] | Ransomware | ||
|
2021-10-13 10:00:00 | Trickbot Rising - Gang Doubles Down on Infection Efforts to Amass Network Footholds (lien direct) | IBM X-Force has been tracking the activity of ITG23, a prominent cybercrime gang also known as the TrickBot Gang and Wizard Spider. Researchers are seeing an aggressive expansion of the gang’s malware distribution channels, infecting enterprise users with Trickbot and BazarLoader. This move is leading to more ransomware attacks — particularly ones using the Conti […] | Ransomware Malware Guideline | ||
|
2021-10-07 13:00:00 | The Real Cost of Ransomware (lien direct) | Ransomware is an expensive cybercrime and getting more so all the time. Payouts have risen massively in the past few years. But while ransomware payment amounts make headlines, the real costs go far beyond what’s paid to the attackers. How Ransomware Works Now Ransomware has always been a problem. But in recent years, attackers have […] | Ransomware | ||
|
2021-10-06 13:00:00 | Banking and Finance Data Breaches: Costs, Risks and More To Know (lien direct) | As each year passes, cybersecurity becomes more important for businesses and agencies of every size, in nearly every industry. In 2020, ransomware cases grew by 150%, and every 39 seconds, a new attack is launched somewhere on the web. A data breach also causes rising costs in banking and finance. What Happens in a Banking […] | Ransomware Data Breach | ||
|
2021-10-05 19:00:00 | What Happens to Victims When a Ransomware Gang Vanishes? (lien direct) | Not long after launching a major supply chain attack in July 2021, the REvil ransomware gang went offline. The group’s infrastructure, including its surface and dark web portals used for ransom negotiations and data leaks, shut down on July 12, according to Bleeping Computer. Russian digital crime forum XSS banned Unknown, a user believed to […] | Ransomware | ||
|
2021-09-09 15:50:00 | LockBit 2.0: Ransomware Attacks Surge After Successful Affiliate Recruitment (lien direct) | After a brief slowdown in activity from the LockBit ransomware gang following increased attention from law enforcement, LockBit is back with a new affiliate program, improved payloads and a change in infrastructure. According to IBM X-Force, a major spike in data leak activity on the gang’s new website indicates that their recruitment attempts have been […] | Ransomware | ||
|
2021-09-03 16:05:00 | Dissecting Sodinokibi Ransomware Attacks: Bringing Incident Response and Intelligence Together in the Fight (lien direct) | Ransomware actors are specializing, collaborating and assisting each other to conduct sophisticated attacks that are becoming increasingly difficult to prevent. Combating these groups effectively similarly requires a team approach — specialization, understanding tactics and techniques and how to counter them and cutting off activity at its source. Arguably, it has never been more imperative that […] | Ransomware | ||
|
2021-09-01 16:00:00 | What Has Changed Since the 2017 WannaCry Ransomware Attack? (lien direct) | The cybersecurity world is still feeling the effects of the 2017 WannaCry ransomware attack today. While the majority of the damage occurred in the weeks after May 12, 2017, WannaCry ransomware attacks actually increased 53% from January 2021 to March 2021. While researching my in-depth article WannaCry: How the Widespread Ransomware Changed Cybersecurity, I learned […] | Ransomware | Wannacry Wannacry | |
|
2021-08-23 18:30:00 | Pay Now or Pay Later: Don\'t Procrastinate When It Comes to Preventing Ransomware (lien direct) | Data breaches like ransomware can be catastrophic for some businesses. Not only do affected organizations lose revenue from the downtime that occurs during the incident, the post-breach costs can be significant. These costs can include everything from the time and resources it takes to detect how the compromise occurred and remediate the actual threat to […] | Ransomware Threat | ||
|
2021-08-19 19:00:00 | How Ransomware Trends Are Changing Cyber Insurance (lien direct) | The world of cyber insurance is in a state of flux. The reason: ransomware creates huge financial impacts. And how it will change insurance in the future is unclear. The insurance industry is struggling to develop cyber liability insurance offerings. Meanwhile, history is proving to be a poor guide to what comes next. Welcome to […] | Ransomware | ||
|
2021-08-17 16:00:00 | Analysis of Diavol Ransomware Reveals Possible Link to TrickBot Gang (lien direct) | Ransomware has become the number one cyber threat to organizations, making up nearly 25% of attacks IBM X-Force Incident Response remediated in 2020. Ransomware is making headlines on a regular basis due to the high impact of certain attacks on victims in critical industries. It’s unlikely that the pace of attacks will slow down in […] | Ransomware Threat | ||
|
2021-07-29 21:00:00 | July 2021 Security Intelligence Roundup: Ransomware, Security by Design and How to Analyze in Windows With Frida (lien direct) | Getting and staying ahead of threat actors means knowing the cybersecurity landscape. Today, that still often means ransomware and changing the ways and places we work. July’s top stories include a supply chain attack from the REvil ransomware gang and how to fold security into design. We also have a deep dive into password safety, […] | Ransomware Threat | ||
|
2021-07-26 16:00:00 | Double Encryption: When Ransomware Recovery Gets Complicated (lien direct) | Ever hear of double extortion? It’s a technique increasingly employed by ransomware attackers. A malware payload steals a victim’s plaintext information before launching its encryption routine. Those operating the ransomware then go on to demand two ransoms — one for a decryption utility and the other for the deletion of the victim’s stolen information from […] | Ransomware Malware | ||
|
2021-07-21 18:00:00 | This Chat is Being Recorded: Egregor Ransomware Negotiations Uncovered (lien direct) | Ransomware attacks are topping the charts as the most common attack type to target organizations with a constant drumbeat of attacks impacting industries across the board. In fact, IBM Security X-Force has seen a more than 10% increase in ransomware incident response requests compared to this time last year. Ransomware is well on its way […] | Ransomware | ||
|
2021-07-16 16:00:00 | Cyber Insurers Might Be Making the Ransomware Problem Worse (lien direct) | In mid-May, one of the largest insurance companies in the U.S. paid $40 million to ransomware attackers. Two people familiar with the matter told Bloomberg that the malicious actors stole an undisclosed quantity of data and then effectively locked the insurer out of its network for two weeks. The company ignored the attackers’ demands at […] | Ransomware | ||
|
2021-07-07 16:00:00 | REvil Ransomware Gang Launches Major Supply Chain Attack Through Kaseya, Downstream Impact May Affect Over 1,500 Customers (lien direct) | On July 2, 2021, Kaseya customers were notified of a compromise affecting the company’s VSA product in a way that poisoned the product’s update mechanism with malicious code. VSA is a remote monitoring and management tool for networks and endpoints intended for use by enterprise customers and managed service providers (MSPs). According to Kaseya, it […] | Ransomware Tool | ||
|
2021-06-23 15:00:00 | “Our IT teams have an Incident Response Plan. We\'re prepared for a cyberattack.” Maybe not. (lien direct) | Phishing attacks, insider threats, denial of service disruptions, malware and ransomware — cybersecurity incidents like these happen on a daily basis. For most of these incidents, the onsite IT team will remediate based on a pre-developed plan and process. And for many of these incidents, that’s a solid approach. But those incident response plans and […] | Ransomware Malware | ||
|
2021-06-04 12:00:00 | Ransomware Attack Response Should Extend Beyond Money to Your Team\'s Morale (lien direct) | A ransomware attack can hurt employee morale in unique ways compared to other types of attacks. Depending on how the company reacts, employee morale can drop, and security teams become less effective. While recovering from any malware incident can cost a significant amount of money, too many companies respond to ransomware by funding threat actors […] | Ransomware Malware Threat | ||
|
2021-06-02 11:00:00 | Cyber Extortion: What You Need to Know in 2021 (lien direct) | Over the years, the term ransomware has taken on a new meaning for many businesses and local governments. This used to be considered a relatively new and emerging form of malware. Now, attackers have transformed it into a sophisticated and aggressive form of cyber extortion. Businesses feel the impact of ransomware globally. Their leaders need to be […] | Ransomware Guideline | ||
|
2021-05-27 11:00:00 | Your May 2021 Security Intelligence Roundup: The DarkSide Ransomware Attack, Better Zoom Meetings, and How To Secure OpTech (lien direct) | Gas shortages caused panic after the Colonial Pipeline attack two weeks ago. This highlights how digital attacks can break into the real world in a big way. Specifically, the Colonial Pipeline attack blends crypto-locking data with data exfiltration and extortion, as well as other threats to infrastructure. How did the attackers do it, and what […] | Ransomware | ||
|
2021-05-26 19:30:00 | Ryuk Ransomware Operators Shift Tactics to Target Victims (lien direct) | The Ryuk ransomware operators continue to target critical infrastructure and extract high ransom payments from vulnerable groups, including an attack on a large health care organization last year. The victim has 90,000 employees and around 400 hospitals, outpatient clinics and behavioral health centers in the U.S. and U.K. During the attack, which shut down computers and […] | Ransomware | ||
|
2021-05-25 21:00:00 | Try These Best Practices to Counter Common Cybersecurity Risks (lien direct) | Since the beginning of the pandemic, ransomware and other cyber attacks have spiked. Meanwhile, millions of people have shifted from working in offices to working remotely. Organizations are increasingly relying on video conferencing, virtual private networks (VPNs) and remote desktop protocol admin tools. Many employers believe that, to cut down on these risks, they should […] | Ransomware | ||
|
2021-05-10 21:20:00 | Shedding Light on the DarkSide Ransomware Attack (lien direct) | It has been well over a decade since cybersecurity professionals began warning about both nation-state and financially motivated cyber-kinetic attacks. Concerned about a cybersecurity threat that would have the potential to destroy physical assets and human lives, many looked to sound the alarm in industrial organizations, tracking the vulnerabilities that could lead to a compromise […] | Ransomware Threat Guideline | ||
|
2021-04-30 13:00:00 | 3 Ransomware Threats in 2021 and How to Protect Against Them (lien direct) | I’m sure I’m not the only one who expected the world to magically get back to normal — whatever that is — when the ball dropped on 2021. After seeing a rise in threats last year, no more ransomware, or at least fewer attacks, was on my very long wish list for a wonderful new […] | Ransomware | ||
|
2021-04-28 20:00:00 | The Sodinokibi Chronicles: A (R)Evil Cybercrime Gang Disrupts Organizations for Trade Secrets and Cash (lien direct) | It likes big game hunting, it enjoys deploying Cobalt Strike and it dabbles in critical vulnerability abuse. It’s known as Sodinokibi/REvil, a ransomware strain that emerged in 2019 as the heir to the GandCrab ransomware, a malware family that supposedly retired from the cyber crime arena in mid-2019 after reportedly amassing illicit profits of over […] | Ransomware Malware Vulnerability | ||
|
2021-04-23 14:00:00 | Health Care Ransomware Strains Have Hospitals in the Crosshairs (lien direct) | The language of digital attacks shares a lot with the language of disease: ‘viruses’ ‘infect’ computers, and stopping their spread can be like trying to keep down a contagious disease. The two worlds also come together when threat actors attack using health care ransomware. When every minute could change the fate of a patient, preventing […] | Ransomware Threat | ||
|
2021-04-21 22:30:00 | Data Poisoning: When Attackers Turn AI and ML Against You (lien direct) | Stopping ransomware has become a priority for many organizations. So, they are turning to artificial intelligence (AI) and machine learning (ML) as their defenses of choice. However, threat actors are also turning to AI and ML to launch their attacks. One specific type of attack, data poisoning, takes advantage of this. Why AI and ML Are at […] | Ransomware Threat | ||
|
2021-04-16 10:00:00 | Ransomware Attacks in 2021: Information Meets Emotion (lien direct) | “If you want to go quickly, go alone, but if you want to go far, go together.” This African proverb opens the Sophos 2021 Threat Report, and in view of recent cybersecurity events, its meaning is very important when it comes to defending against ransomware attacks. As threat actors work together to provide ransomware-as-a-service, defenders […] | Ransomware Threat | ||
|
2021-04-09 15:00:00 | New Ransomware Threats Are Getting Bolder: How to Rewrite the Script (lien direct) | Greater exposure is both good news and bad news when it comes to new ransomware threats. While ransomware attacks themselves are never good news, it is a positive sign that these attacks are receiving more media attention, such as the attack on an entire hospital chain, an attack on a Las Vegas school district and even […] | Ransomware | ||
|
2021-04-01 12:00:00 | IBM Named a Strong Performer in The Forrester Wave™: External Threat Intelligence Services, Q1 2021 (lien direct) | How can organizations keep up with today’s evolving threat landscape, highlighted by targeted phishing attacks, profit-seeking ransomware and advanced persistent threats (APTs)? The simple answer is better threat intelligence. Please stop me if this is something you’ve heard before. As cyberattacks continue to become more wide-ranging and complex, so too has the type of threat […] | Ransomware Threat | ||
|
2021-02-19 16:00:00 | Manufacturing Cybersecurity Threats and How To Face Them (lien direct) | With manufacturing cybersecurity threats on the rise, what should companies know about protecting their digital assets in the future? Risks to Security in Manufacturing The number of ransomware incidents involving the manufacturing sector increased 156% between the first quarters of 2019 and 2020. Later in 2020, ransomware actors demanded $17 million from a laptop maker […] | Ransomware | ||
|
2021-02-04 11:00:00 | School\'s Out for Ransomware (lien direct) | When I was growing up, snow days (days off for inclement weather or heavy snowfall) weren’t uncommon. We’d get 24 hours or so of freedom, then mother nature would eventually step in and resolve the problem. But today’s kids are dealing with a new kind of snow day, one mother nature can’t help with — […] | Ransomware | ||
|
2020-12-09 21:35:04 | A Reminder to Stay Vigilant (lien direct) | This year has been a challenging one for organizations that faced data breaches, intrusions and ransomware attacks at the hands of cyber criminals and nation-state attackers. Cybersecurity firm FireEye announced on Dec. 8, 2020, that an adversary targeted and gained unauthorized access to its Red Team tools — an important call to every company to […] | Ransomware | ||
|
2020-11-18 16:32:31 | Ransomware Response: Time is More Than Just Money (lien direct) | The initial actions an organization takes in the moments after discovering a ransomware attack can have profound implications on how the attack ends. Virtually every security professional will tell you ransomware-based attacks are rapidly becoming the bane of the digital age, but that may not translate into chief information security officers (CISOs) being certain employees […] | Ransomware | ||
|
2020-10-28 16:00:20 | WannaCry: How the Widespread Ransomware Changed Cybersecurity (lien direct) | If I had polled cybersecurity experts on their way to work on May 12, 2017, most of them would have said they knew a major cybersecurity event loomed. Yet, on that day no one expected that they were walking into the perfect storm — in the form of WannaCry ransomware, the most damaging cyberattack to […] | Ransomware | Wannacry |
To see everything:
Our RSS (filtrered)
