The Cost of Ransoms Demanded and Paid Double in 2020!

Dec 18, 2020 8:19:18 AM By Stu Sjouwerman

According to new data from UK cyber insurer Beazley shows ransomware claims have increased materially and calls for organizations to employ a layered cyber defense.

Data Breaches Are Expected to Decline While Ransomware and BEC Gain Steam

Dec 14, 2020 8:27:05 AM By Stu Sjouwerman

A new report from the Identity Theft Research Center discusses which cybersecurity attacks will be most impactful next year as part of the ITRC’s 2021 predictions.

Who’s on the Phone? It’s the Ransomware Guys “Encouraging” You to Pay the Ransom!

Dec 11, 2020 8:15:55 AM By Stu Sjouwerman

Since August of this year, some ransomware attacks are being followed up by phone calls to increase pressure, promote the attack internally, and increase the chances of getting paid.

Ransomware Gangs Are Now Cold-Calling Victims If They Restore From Backups Without Paying

Dec 5, 2020 10:16:20 AM By Stu Sjouwerman

Catalin Cimpanu at ZDNet reported on another evil escalation in ransomware extortion tactics. In attempts to put pressure on victims, some ransomware gangs are now cold-calling victims on ...

Maze Ransomware Group Retires (Retires!), Leaving a Gap in the Ransomware Marketplace

Dec 3, 2020 8:16:06 AM By Stu Sjouwerman

The news last month of the “retirement” of Maze should be a warning to organizations wondering what ransomware will come next and how much worse will it be.

Average Ransomware Payment Significantly Increases Risk

Dec 2, 2020 11:05:57 AM By Stu Sjouwerman

The average ransomware payout has increased by 178% over the past year, according to researchers at Atlas VPN. In Q4 2019, the payments averaged $84,000. By Q3 2020, the average payment ...

Egregor Ransomware Finds a New Way to Inform You That You’re a Victim of Cyberattack: Printers

Nov 30, 2020 9:54:14 AM By Stu Sjouwerman

Unlike the traditional methods of notifying victim organizations by simply taking over a computer or providing a “readme” text file, this new method has some devilish benefits.

Credential-Stealing VPN Exploits

Nov 25, 2020 9:43:09 AM By Stu Sjouwerman

A hacker has published an exploit for a critical vulnerability in Fortinet VPN devices, along with a list of 49,577 vulnerable devices, BleepingComputer reports. Fortinet released a patch ...

2021 Prediction: Expect Ransomware Attacks Will Increase in Frequency and Variety

Nov 23, 2020 4:27:29 PM By Stu Sjouwerman

A new forward-looking report from security vendor FireEye Mandiant predicts the greatest single cyber threat today is only going to become a greater menace next year.

Ransomware Downtime Costs for SMBs Are 50 Times More than the Ransom Itself!

Nov 23, 2020 4:23:03 PM By Stu Sjouwerman

No one has less cash on hand to spend on dealing with a cyberattack than the small business. New data shows ransomware is a challenge for SMBs and they aren’t prepared for the costs.

[HEADS UP] Ransomware Gangs Partner to Extort Victims

Nov 16, 2020 3:53:59 PM By Stu Sjouwerman

According to Bleeping Computer, several ransomware crews are teaming up to split profits obtained in malicious attacks targeting public and private companies.

Ransomware Attacks Officially Hit a New Low and Go Where No Cyberattack Has Gone Before: Death

Nov 16, 2020 8:22:35 AM By Stu Sjouwerman

The past few months have seen ransomware quickly evolve to a place of ingenious sophistication, rampant greed, indifferent destruction, and the sad loss of life.

BEC Incidents Intent on Invoice or Payment Fraud Increase 155% Across All Industries

Nov 10, 2020 8:29:59 AM By Stu Sjouwerman

Business Email Compromise appears to be back in the saddle again, as attackers use simple social engineering and domain impersonation to trick victims into paying up.

Ryuk Ransomware Takes a Single Victim for $34 Million in Ransom

Nov 10, 2020 8:25:48 AM By Stu Sjouwerman

A new report from Security Researcher Vitali Kremez puts the spotlight on exactly how the group behind Ryuk ransomware is successful in infecting and obtaining payment from its victims.

Fake Microsoft Teams Updates to Infect Systems

Nov 9, 2020 5:46:07 PM By Stu Sjouwerman

According to Bleeping Computer, ransomware operators are using malicious fake ads for Microsoft Teams updates to infect systems. The infection would deploy Cobalt Strike to compromise the ...

Cybercriminals Target Brazilian Government in a Ransomware Attack

Nov 5, 2020 4:02:07 PM By Stu Sjouwerman

The bad guys managed to fully encrypt Brazil's Superior Court of Justice (SCJ), Ministry of Health, and Government of the DF this week. Technicians from SCJ discovered that there was a ...

Cyber Insurers Expect to Raise Ransomware Policy Premiums as Much as 25%

Nov 4, 2020 7:00:00 AM By Stu Sjouwerman

The increase in the frequency of ransomware attacks, as well as the rise in the demanded ransom amounts is causing cyber insurers to change tactics to limit their risk.

New Ransomware, OldGremlin, Coming Soon to an Organization Near You!

Oct 29, 2020 5:19:45 PM By Stu Sjouwerman

Pay attention to this one. Despite only targeting Russian companies, the use of custom self-made malware and decidedly creative phishing campaigns makes them a potential danger.

More Ransomware Creators Jump on the Leak Site Bandwagon as the Number of Sites and Data Breach Posts Skyrocket in Q3

Oct 29, 2020 5:19:35 PM By Stu Sjouwerman

The third quarter saw massive increases in activity by ransomware gangs both creating leak sites and posting to them about recent attacks on orgs that, presumably, didn’t pay the ransom.

[HEADS UP] U.S. Government Warns of Ransomware Threat Against Hospitals

Oct 29, 2020 8:46:46 AM By Stu Sjouwerman

This week, Krebs on Security released an article on a Russian cybercriminal gang that have been known for deploying ransomware has prepared to attack hundreds of hospitals, clinics, and ...

Security Awareness Training Blog

Ransomware Blog

View Topics