Security Awareness Training Blog

Ransomware Blog

Keeping you updated on the latest ransomware attack vectors, strains, decryptors, families and trends to help you avoid becoming infected.

The Latest Ransomware Attacks Can Require a Data Breach Notification

Ransomware variants shifting tactics to include extortion may be cause for organizations to treat them as data breaches and, therefore, quickly notify affected parties.
Continue Reading

Netwalker Ransomware Adopts an Affiliate Model to Help Increase Attacks and Profits

The ransomware formerly known as Mailto has taken a page from traditional software vendors and rebranded itself with a new affiliate-based go-to-market strategy.
Continue Reading

[Heads Up] Ransomware Damage Skyrockets As Ransoms Grew 14 Times In Just 12 Months

Last year was highly profitable for ransomware actors but with the prices we've seen recently, 2020 is likely to surpass it as actors continue to target large companies in key industries. ...
Continue Reading

Your Next Ransomware Attack May Require Two Payments!

In a case of adding insult to injury, a new strain of ransomware is looking for one payment to decrypt, and a second payment to not publish stolen files.
Continue Reading

Paying the Ransom Doubles the Cost of a Ransomware Attack

The total cost of the average ransomware attack more than doubles if the victim decides to pay the ransom, according to Sophos’s State of Ransomware 2020 report. The Sophos-commissioned ...
Continue Reading

OUCH! REvil Ransomware Attack Hits A-List Celeb Law Firm

OUCH! BBC News was one of the many major media sites who reported May 12 that a media and entertainment law firm used by A-list stars including Rod Stewart, Robert De Niro, Sir Elton John ...
Continue Reading

Healthcare Providers Get Free Assistance with Remediating Ransomware Attacks

In the wake of ransomware attacks continuing on healthcare providers, despite the obvious need for hospitals and urgent care clinics to remain operational, one company is offering some ...
Continue Reading

Your Ransomware Task Force: Response, Recovery, and Remediation Tips from the Pros

When you realize your organization has been hit with a ransomware attack there are a few things that need to happen. One… take a deep breath. Two… contain the damage. And three… initiate ...
Continue Reading

It Starts with a Phish: Employee PII at Risk When Pipeline Development Outsourcer Falls Victim to Ransomware Attack

The latest example of a modern-day ransomware attack demonstrates how data encryption and ransom can no longer be the assumed extent of an attack.
Continue Reading

Some Phishers Who Know Their Trade

Researchers at Votiro have come across well-crafted phishing emails that purport to come from UPS, FedEx, and DHL. All of the emails contain malicious Excel attachments that will install ...
Continue Reading

1,000+ SEC Filings Show Ransomware an On-Going Risk for Public Companies

As public companies seek to improve their cybersecurity posture, they also work to comply with SEC formal guidance to disclose cybersecurity risk, highlighting ransomware as a key factor.
Continue Reading

[Heads Up] Microsoft: Ransomware Gangs That Don't Threaten To Leak Your Data Steal It Anyway

That means you can from now on count a ransomware infection as a data breach with all the consequences that this brings. Moreover, the so-called "human-operated" ransomware gangs have ...
Continue Reading

New COVID-19 Malware Variants Render Your Endpoints Useless

Forget cybercriminals out to steal your money and credentials. Security researchers are now finding more malware intent on rewriting master boot records and wiping file systems.
Continue Reading

Phishing Trend: Quality, Not Quantity?

A new report from CyberCube found that sophisticated cybercriminals are increasingly shifting to launching business email compromise (BEC) attacks against executives, Insurance Business ...
Continue Reading

Spanish Hospital Faces Netwalker Ransomware Attack in the Midst of Pandemic

At a time when hospitals are already stretched thin for budget, one of many attackers still thinks it’s a good idea to hold hospitals for ransom, showing organizations always need to be ...
Continue Reading

Three More Ransomware Families Join the Extortion Game

As ransomware creators look for ways to ensure they get paid for their malicious efforts, many are taking a page from the Maze ransomware manual and are posting stolen data if not paid.
Continue Reading

Organizations Say They Want Employees to Prepare for Ransomware Attacks, But Do Little in the Way of Training

Organizations are keenly aware of the ramifications of ransomware attacks and the need to prevent them but aren’t empowering users to prevent becoming the victim.
Continue Reading

A new ransomware strain called 'Save the Queen’, distributes itself from your own Domain Controllers

Sophisticated cybercriminals have continuously improved the effectiveness of ransomware attacks, according to Yaki Faitelson, co-founder and CEO of Varonis. In an article for Forbes, ...
Continue Reading

Ransomware Incidents Increase 131 Percent with the SMB Being the Primary Target

The recent release of new data from U.K. cyberinsurer Beazley’s brings to light what kinds of attacks their customers are experiencing and who’s at risk.
Continue Reading

Organizations Need To Be Wary Of Home Worker Phishing Risks

Security experts warn that phishing attacks against home workers will rise.
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews