October and November Have Been the Two Busiest Months for Ransomware

Dec 14, 2022 2:01:13 PM By Stu Sjouwerman

Trending data going back to January of 2020 shows that ransomware attacks are continually increasing in number with unusual highs in the 4th quarter.

[On-Demand] Ransomware, Ransom-war and Ran-some-where: What We Can Learn When the Hackers Get Hacked

Dec 7, 2022 9:28:47 AM By Stu Sjouwerman

Ransomware strikes organizations almost every two seconds. Tales of bad actors doing their worst fill the InfoSec news cycle, but what happens when the hackers get hacked?

New Threat Group Already Evolves Delivery Tactics to Include Google Ads

Dec 2, 2022 12:36:56 PM By Stu Sjouwerman

Delivering an equally new Royal ransomware, this threat group monitored by Microsoft Security Threat Intelligence has already shown signs of impressive innovation to trick victims.

Ransomware Attacks on Holidays and Weekends Increase and Take a Greater Toll on Organizations

Dec 2, 2022 12:36:35 PM By Stu Sjouwerman

With 97% of U.S. organizations experiencing a ransomware attack over a weekend or on a holiday, the impacts on response and recovery time are material, including loss of revenue.

A Recent, Complex, Ransomware Campaign

Nov 22, 2022 9:39:48 AM By Stu Sjouwerman

Microsoft has observed a threat actor that’s been running a phishing campaign since August 2022. The threat actor, which Microsoft tracks as “DEV-0569,” is using phishing emails to ...

10 Million Health Records from Australian Insurer Medibank are Leaked After Refusing to Pay the Ransom

Nov 21, 2022 1:33:41 PM By Stu Sjouwerman

The aftermath of a ransomware attack last month demonstrates just how bad an attack can get when the cybercriminals don’t get what they want.

Over One-Third of Companies Who Pay the Ransom are Targeted for a Second Time

Nov 21, 2022 11:33:06 AM By Stu Sjouwerman

Despite the somewhat logical notion that once you’ve paid the ransom, the attack is over, new data shows that paying the ransom doesn’t help you anywhere near how much you think it does.

Valid Accounts Rank as the Top Initial Access Infection Vector, Putting a Spotlight on Credentials

Nov 17, 2022 1:41:19 PM By Stu Sjouwerman

As ransomware, business email compromise, and phishing attacks continue to escalate, new data sheds light on where organizations need to focus to help put a stop to attack success.

Ransomware Attacks on UK Organizations are Not Being Reported Enough, Clouding Impact

Nov 17, 2022 1:41:16 PM By Stu Sjouwerman

A new report from the UK’s National Cyber Security Center highlights the current state of threats in the UK, with particular focus on ransomware attacks and their impact.

Ransomware Attacks Targeting Manufacturing are up 52% Over the Course of 12 Months

Nov 10, 2022 9:49:04 AM By Stu Sjouwerman

While every sector is taking strides to improve their security stances against ransomware and other cyberattacks, the latest data shows that for Manufacturing the impacts are huge and the ...

[EYES OUT] This Scary Strain of Sleeper Ransomware Is Really a Data Wiper in Disguise

Nov 9, 2022 6:54:55 AM By Stu Sjouwerman

This Data wiper replaces every other 666 bytes of data with junk. Techradar reported that a new data-wiping malware has been detected, infecting more and more endpoints with each passing ...

CheckPoint Warns of Black Basta Ransomware as the Number of Victim Organizations Increases by 59%

Nov 3, 2022 1:14:42 PM By Stu Sjouwerman

This latest “new kid on the block” is gaining momentum and – according to CheckPoint – seeing successes with their attacks globally, calling their organizational structure “impressive.”

CISA Warns of Daxin Team Ransomware Group Targeting the Healthcare and Public Health Sector via VPNs

Nov 3, 2022 1:14:37 PM By Stu Sjouwerman

This new group makes the case that – as with any market – cybercriminals will focus on a niche sector they are experts on in order to improve their chances of success.

The Number of Vulnerabilities Associated with Ransomware Grows 426% Over Three Years

Oct 28, 2022 2:30:00 PM By Stu Sjouwerman

With only 57 vulnerabilities tied to ransomware back in 2019, the most recent data from security vendor Ivanti shows that number predicted to be over 300 by the end of 2022.

Ransomware Attacks Via RDP Drop Significantly as Phishing Continues to Dominate

Oct 28, 2022 2:13:03 PM By Stu Sjouwerman

Since 2018, remote desktop compromise (RDP) and phishing have battled for dominance as the primary initial attack vector in ransomware attacks. The latest data shows that RDP is no longer ...

Over Two-Thirds of Organizations Have No Ransomware-Specific Incident Response Playbook

Oct 28, 2022 10:16:34 AM By Stu Sjouwerman

A newly released report on ransomware preparedness shows organizations are improving their security stance in comparison to last year, but overall still aren’t doing enough.

91% of Organizations are Concerned About Ransomware Attacks in 2022

Oct 18, 2022 2:41:17 PM By Stu Sjouwerman

With ransomware attacks becoming more frequent, evasion getting more sophisticated, and ransoms increasing, new data shows organizations aren’t fighting for staff and budget.

Sloppy but Dangerous: Fake Ransomware

Oct 17, 2022 8:34:05 AM By Stu Sjouwerman

Conventional ransomware encrypts the victims’ files and holds them hostage, unavailable to their owners, promising to provide a decryptor once the victims pay the ransom. In some cases ...

Cyber-Zombie Apocalypse: Ransomware Gangs Continue to Come Back from the Dead

Oct 14, 2022 9:03:02 AM By Stu Sjouwerman

With ransomware gangs making so much money and then dropping off the face of the earth, what’s the motivation to come back to life and potentially risk getting caught?

Encrypted Files are the Overwhelming Way Organizations “Detect” Ransomware Attacks

Oct 12, 2022 12:00:00 PM By Stu Sjouwerman

New analysis of cyberattacks shows that organizations aren’t able to properly detect ransomware attacks, resulting in a majority of victims paying the ransom to retrieve data.

Security Awareness Training Blog

Ransomware Blog

View Topics