Security Awareness Training Blog

Ransomware Blog

Keeping you updated on the latest ransomware attack vectors, strains, decryptors, families and trends to help you avoid becoming infected.

Prediction: Ransomware Attacks to Spike as Employees Return to the Office

Because of the nature of ransomware attacks and the mass numbers of workers at home, anti-malware vendor Emisoft believes we’re going to see a rise once work returns to normal.
Continue Reading

[BEWARE] New Report on Doxxing Exposes Cybercriminal Trends

A new threat intelligence report on doxxing, researched by cybersecurity experts at Kivu, reveals that the majority of attacks occur in the U.S., with companies in the consumer sector ...
Continue Reading

[HEADS UP] More Australian Companies Hit By Mespinoza/Pysa Ransomware

Two more Australian companies have been hit by attackers using the Mespinoza/Pysa Windows ransomware, the same malware that was used to take down the Australian money management firm ...
Continue Reading

Ransomware Gangs Team Up To Form Extortion Cartel

Today, BleepingComputer was told by cyber intelligence firm KeLa that the Maze operators added the information and files for an international architectural firm to their data leak site.
Continue Reading

[Heads Up] The REvil Ransomware Gang Is Now *Auctioning Off* Their Victim Data

Intrepid investigative Reporter Brian Krebs had the news first. "The criminal group behind the REvil ransomware enterprise has begun auctioning off sensitive data stolen from companies ...
Continue Reading

How Low Will Cybercriminals Go?

Surely Bond villains only exist in movies -- I mean people aren’t truly evil are they? Especially ones who sit behind a computer. This was part of a discussion I was having with my ...
Continue Reading

The Latest Ransomware Attacks Can Require a Data Breach Notification

Ransomware variants shifting tactics to include extortion may be cause for organizations to treat them as data breaches and, therefore, quickly notify affected parties.
Continue Reading

Netwalker Ransomware Adopts an Affiliate Model to Help Increase Attacks and Profits

The ransomware formerly known as Mailto has taken a page from traditional software vendors and rebranded itself with a new affiliate-based go-to-market strategy.
Continue Reading

[Heads Up] Ransomware Damage Skyrockets As Ransoms Grew 14 Times In Just 12 Months

Last year was highly profitable for ransomware actors but with the prices we've seen recently, 2020 is likely to surpass it as actors continue to target large companies in key industries. ...
Continue Reading

Your Next Ransomware Attack May Require Two Payments!

In a case of adding insult to injury, a new strain of ransomware is looking for one payment to decrypt, and a second payment to not publish stolen files.
Continue Reading

Paying the Ransom Doubles the Cost of a Ransomware Attack

The total cost of the average ransomware attack more than doubles if the victim decides to pay the ransom, according to Sophos’s State of Ransomware 2020 report. The Sophos-commissioned ...
Continue Reading

OUCH! REvil Ransomware Attack Hits A-List Celeb Law Firm

OUCH! BBC News was one of the many major media sites who reported May 12 that a media and entertainment law firm used by A-list stars including Rod Stewart, Robert De Niro, Sir Elton John ...
Continue Reading

Healthcare Providers Get Free Assistance with Remediating Ransomware Attacks

In the wake of ransomware attacks continuing on healthcare providers, despite the obvious need for hospitals and urgent care clinics to remain operational, one company is offering some ...
Continue Reading

Your Ransomware Task Force: Response, Recovery, and Remediation Tips from the Pros

When you realize your organization has been hit with a ransomware attack there are a few things that need to happen. One… take a deep breath. Two… contain the damage. And three… initiate ...
Continue Reading

It Starts with a Phish: Employee PII at Risk When Pipeline Development Outsourcer Falls Victim to Ransomware Attack

The latest example of a modern-day ransomware attack demonstrates how data encryption and ransom can no longer be the assumed extent of an attack.
Continue Reading

Some Phishers Who Know Their Trade

Researchers at Votiro have come across well-crafted phishing emails that purport to come from UPS, FedEx, and DHL. All of the emails contain malicious Excel attachments that will install ...
Continue Reading

1,000+ SEC Filings Show Ransomware an On-Going Risk for Public Companies

As public companies seek to improve their cybersecurity posture, they also work to comply with SEC formal guidance to disclose cybersecurity risk, highlighting ransomware as a key factor.
Continue Reading

[Heads Up] Microsoft: Ransomware Gangs That Don't Threaten To Leak Your Data Steal It Anyway

That means you can from now on count a ransomware infection as a data breach with all the consequences that this brings. Moreover, the so-called "human-operated" ransomware gangs have ...
Continue Reading

New COVID-19 Malware Variants Render Your Endpoints Useless

Forget cybercriminals out to steal your money and credentials. Security researchers are now finding more malware intent on rewriting master boot records and wiping file systems.
Continue Reading

Phishing Trend: Quality, Not Quantity?

A new report from CyberCube found that sophisticated cybercriminals are increasingly shifting to launching business email compromise (BEC) attacks against executives, Insurance Business ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews