Ransomware Gang Creates “User-Friendly” Stolen Data Search Site for Employee Victims

Jul 6, 2022 8:03:22 AM By Stu Sjouwerman

In an interesting extortion twist to get ransomware victims to pay up, one gang has created a search site to allow employees to see if their own private information has been made public.

Phishing Emails Top the List as the Initial Attack Vector for Ransomware Attacks

Jul 6, 2022 8:03:07 AM By Stu Sjouwerman

The latest data on ransomware trends from backup vendor Veeam demonstrate the impact these attacks have on backups and an organization’s ability to recover.

[FREE Resource Kit] July Is Ransomware Awareness Month

Jul 5, 2022 4:04:37 PM By Stu Sjouwerman

July is Ransomware Awareness Month, and we’ve got you covered with free resources!

[New FBI and CISA Alert] This ransomware strain uses RDP flaws to hack into your network

Jul 1, 2022 6:47:10 AM By Stu Sjouwerman

As of May 2022, MedusaLocker has been observed predominantly exploiting vulnerable Remote Desktop Protocol (RDP) configurations to access victims' networks, according to a new joint ...

Bad News to Ransom Payers: 80% of You Will Face a Second Attack Within 30 Days

Jun 29, 2022 9:27:04 AM By Stu Sjouwerman

New insight into what happens during and after a ransomware attack paints a rather dismal picture of what to expect from attackers, your executives, and your operations.

Less Than 40% of Asia-Pacific Organizations Are Confident to Stop Cyber Threats as 83% Experience At Least One Ransomware Attack a Year

Jun 20, 2022 10:10:51 AM By Stu Sjouwerman

With exactly half of cybersecurity incidents caused by organizations having an outdated security posture, the ability to stop breaches involves some re-investment in measures that really ...

Approaching Ransomware Victims Privately

Jun 9, 2022 12:02:12 PM By Stu Sjouwerman

Researchers at KELA warn that ransomware gangs are increasingly refraining from mentioning their victims’ names after the initial attack, giving the victims a chance to pay up before the ...

Karakurt Adds Irritating Phone Calls to its Crimes

Jun 8, 2022 9:23:51 AM By Stu Sjouwerman

The US Cybersecurity and Infrastructure Security Agency (CISA) and its partners have issued a joint alert on Karakurt, a data theft extortion group that harasses victims’ employees, ...

The Business (and Success) of Ransomware Explained as a Simple Funnel

Jun 1, 2022 6:08:53 PM By Stu Sjouwerman

The rise of Ransomware-as-a-Service has given rise to a number of more successful groups who have their “business” down to a simple exercise of playing the numbers.

Verizon: Ransomware Involved in 25% of Data Breaches as Credentials and Phishing are Seen as “Key Paths” for Attack Success

May 25, 2022 12:30:10 PM By Stu Sjouwerman

With the much-anticipated annual Verizon Data Breach Investigations Report finally released, we get a view of ransomware from the data breach perspective that points to a common weakness ...

Homeland Security: U.S. Ransomware Attacks Have Doubled in the Last Year

May 13, 2022 8:04:41 AM By Stu Sjouwerman

A March 2022 report from the Senate Committee on Homeland Security and Governmental Affairs zeros in on the growing problem of ransomware and lessons learned so far.

European Wind-Energy Sector Is the Latest Target of Russian State-Sponsored Attacks

May 12, 2022 12:21:37 PM By Stu Sjouwerman

While Russia consistently denies any launching of cyberattacks, attack details point to reasonable intent by and cybercriminal ties to the Russian government.

89% of Organizations Experienced One or More Successful Email Breach Types During the Last 12 Months

May 4, 2022 9:29:50 AM By Stu Sjouwerman

With the number of email breaches per year almost doubling in the last three years, organizations still don’t see email security solutions as being an effective means of stopping attacks.

FIN12 Threat Group Speeds Up Ransomware Attacks to Just Two Days After Initial Access

May 4, 2022 9:28:52 AM By Stu Sjouwerman

As detection times are reducing across the board, threat groups are improving their craft and are prioritizing speed as the key ingredient in ransomware attacks.

75% of SMBs Would Only Survive Seven Days or less from a Ransomware Attack

Apr 28, 2022 6:05:02 PM By Stu Sjouwerman

With ransomware attacks on the increase, new data shows a material portion of small and medium business organizations are completely ill-equipped to address an attack.

[EYE OPENER] The Ransom Payment is Only 15% of The Total Cost of Ransomware Attacks

Apr 28, 2022 3:25:08 PM By Stu Sjouwerman

As the number of ransomware attacks has increased 24% over the previous year, security researchers estimate the total associated attack costs to be just over 7 times higher.

Hacking the Hacker: An Inside Look at the Karakurt Cyber Extortion Group

Apr 26, 2022 9:53:55 AM By Stu Sjouwerman

By breaking into an attack server, security researchers have uncovered new details that show the connection between the Karakurt group and Conti ransomware.

Nearly all Data Breaches in Q1 2022 Were the Result of a Cyber Attack

Apr 26, 2022 9:53:38 AM By Stu Sjouwerman

New data from the Identity Theft Resource Center shows rises in the number of data compromises following 2021’s record-setting year, all stemming from cyber attacks.

Community Associations Confront Social Engineering

Apr 25, 2022 8:51:35 AM By Stu Sjouwerman

It’s not just deep-pocketed corporations that prove attractive targets for social engineering. Any organization that holds information that can fetch a good price in the criminal ...

Critical: CISA Warns of Potential Attacks on Infrastructure by Russian State-Sponsored and Criminal Cyber Gangs

Apr 21, 2022 10:14:00 AM By Stu Sjouwerman

In a joint multi-country cybersecurity advisory (CSA), governments are warning their respective critical infrastructure organizations to be vigilant against increased malicious cyber ...

Security Awareness Training Blog

Ransomware Blog

View Topics