The Cost of Remediating a Ransomware Attack More than Doubles and is Quickly Approaching $2 Million

Apr 30, 2021 12:25:12 PM By Stu Sjouwerman

With 54% of organizations unable to stop a ransomware attack before data is encrypted and operations are impacted, the increasing cost of ransomware remediation is troubling.

U.K. Royal Mail-related Phishing Scams Are Up 645%

Apr 30, 2021 12:25:08 PM By Stu Sjouwerman

New data from CheckPoint highlights how scammers are using simple shipping-related social engineering scams to trick victims into giving up personal information and credit card details.

Ransomware Operators Threaten to Short Victims’ Stocks

Apr 29, 2021 10:33:38 AM By Stu Sjouwerman

The Darkside ransomware operators are now offering to tip off unscrupulous stock traders before they post the names of publicly traded victim companies, the Record reports. The criminals ...

Why Should We Care About Personal Smishing Attacks?

Apr 29, 2021 10:33:34 AM By Roger Grimes

I am not sure what is going on these days, but for several weeks, I have received far more SMS-based phishing (i.e., smishing) attacks than usual.

Ransomware Demands Spike by 43% Already in 2021

Apr 29, 2021 10:33:30 AM By Stu Sjouwerman

Cybercriminal groups are increasing their automated and tactical ransomware attacks. Unfortunately, that also means they have an increase in greed.

[HEADS UP] Ransomware Gangs are Creating Ransomware Cartels

Apr 29, 2021 10:33:20 AM By Stu Sjouwerman

Analysis by threat intelligence group Analyst1 recently uncovered that the bad guys are responsible for forming a ransomware cartel.

Scammers Target Rogers Customers With SMS Messages

Apr 29, 2021 10:33:17 AM By Stu Sjouwerman

Scammers are targeting Rogers customers with text messages offering $50 refunds, according to BleepingComputer. The Canadian telecommunications provider suffered a widespread outage last ...

Federal Reserve Chairman Jerome Powell Cites Cyberthreats as Current “Biggest Concern” to Financial Institutions

Apr 29, 2021 10:25:54 AM By Stu Sjouwerman

Fears of a resurgence of COVID-19 and increased cyberattacks are mentioned as top risks that can materially impact the finance sector and the economy, by Jerome Powell in a recent ...

Security Culture Influenced by the Global Effects of COVID-19

Apr 29, 2021 10:25:38 AM By Aimee Laycock

In the Industry Benchmark section of the 2021 Security Culture Report, we describe the security culture scores of each industry sector in detail. This section of the report can be used to ...

Researchers Warn of EtterSilent Facilitating Risky Malware Delivery

Apr 29, 2021 10:25:23 AM By Stu Sjouwerman

Cybercriminals are using a new malicious document builder dubbed “EtterSilent,” according to researchers at Intel 471. The builder is used to craft Microsoft Office documents with macros ...

Lazarus Group Uses New Technique to Avoid Detection

Apr 29, 2021 10:25:03 AM By Stu Sjouwerman

North Korea’s Lazarus group is using an interesting method to evade security measures, according to researchers at Malwarebytes. The threat actor is sending phishing emails with malicious ...

Evil Corp Tries to Work Around U.S. Treasury Sanctions Using Hades Ransomware

Apr 29, 2021 10:24:44 AM By Stu Sjouwerman

The cybercriminal group linked to over $100 Million in financial damages has pivoted their execution strategy to bypass sanctions that prevent U.S. companies from paying them ransom.

New Ransomware Task Force Shares Actions To Disrupt Ransomware Cyber Crime

Apr 29, 2021 10:09:32 AM By Stu Sjouwerman

The Ransomware Task Force, a public-party coalition of more than 50 experts, has shared a framework of actions to disrupt the ransomware business model.

Phishing Campaign Abuses Contact Forms

Apr 29, 2021 10:00:00 AM By Stu Sjouwerman

Attackers are abusing websites’ contact forms to send malicious emails to the websites’ owners, according to researchers at Microsoft. The emails contain bogus copyright claims with a ...

Mobile is a Problem: 97% of Organizations Experienced Mobile Attacks in 2020

Apr 29, 2021 8:41:17 AM By Stu Sjouwerman

Everything from applications, social apps, OS vulnerabilities and even mobile device management acted as initial attack vectors troubling nearly every single organization globally.

Cybercriminals Use Job-Specific Social Media Platforms to Target UK Citizens With Fake Accounts

Apr 29, 2021 4:55:00 AM By Stu Sjouwerman

At least 10,000 UK citizens have been targeted by nation-state actors via fake LinkedIn accounts over the past five years, the BBC reports. Ken McCallum, Director-General of MI5, said ...

Phishing Tactics Help Legitimate Pension Fund to Secure Meetings with Prospective Customers

Apr 28, 2021 8:57:07 AM By Stu Sjouwerman

Security researchers uncover a marketing campaign that takes a page from the cybercriminal phishing handbook to “trick” pensioners to have an introductory call with their fund expert.

The Darkside Ransomware Group Is the Dangerous Poster Child for Today’s Ransomware-as-a-Service

Apr 28, 2021 8:56:59 AM By Stu Sjouwerman

Looking beyond the “older” RaaS threat groups like Ryuk, DoppelPaymer, and Revil, today’s modern ransomware-as-a-service operator is far more business-like and specific in execution.

A Legitimate Charity Prompts Scam Imitators

Apr 28, 2021 8:00:00 AM By Stu Sjouwerman

Scammers are impersonating philanthropist Mackenzie Scott, the billionaire ex-wife of Jeff Bezos, the New York Times reports. Scott prefers to give money directly and contacts charities ...

FBI Obtains Authorization to Access US Servers to Remove Webshells Due to Exchange Vulnerability

Apr 27, 2021 1:45:00 PM By Stu Sjouwerman

Your server could have been compromised and the FBI was trying to mitigate the issue without you even knowing it yet.

Security Awareness Training Blog

View Topics