Cyberattacks

Internal Cisco data stolen after employee hit by voice phishing attack

Cisco identified the attacker as an initial access broker with ties to multiple cybercrime and ransomware groups.

By Matt Kapko • Aug. 11, 2022

Cloudflare thwarts ‘sophisticated’ phishing attack strategy that bruised Twilio

Dissimilar responses from Cloudflare and Twilio bear important lessons in transparency, resiliency and access.

By Matt Kapko • Aug. 9, 2022

Twilio employees duped by text message phishing attack

The communications provider declined to say how many employees were duped and the amount of customers compromised.

By Matt Kapko • Aug. 8, 2022

Encevo stays resilient post-attack, but it’s still assessing the data damage

The Luxembourg energy supplier’s ability to thwart a shutdown likely empowered its refusal to pay a ransom.

By Matt Kapko • Aug. 8, 2022

The 11 most-prevalent malware strains of 2021 fuel cybercrime

Cybercriminals remain the most prolific users of malware, wielding these top strains to deliver ransomware and steal data.

By Matt Kapko • Aug. 5, 2022

Luxembourg energy supplier Encevo hit by ransomware attack

The group behind the attack threatened to leak more than 150 gigabytes of sensitive data on Monday.

By Matt Kapko • Aug. 1, 2022

Most cyberattacks come from ransomware, email compromise

Attackers are scanning for vulnerabilities in unpatched systems within 15 minutes, stressing the pace and scale of the threat.

By Matt Kapko • Aug. 1, 2022

Benefits of modern PAM: Efficiency, security, compliance

Cloud-ready Privileged Access Management (PAM) is vital to your cyber defense strategy.

By Shweta Khare, Cybersecurity Evangelist, Delinea • Aug. 1, 2022

Entrust acknowledges June cyberattack, remains tight-lipped on the details

The cybersecurity vendor has yet to disclose how the incident occurred, the type of data stolen and if ransomware was involved.

By Matt Kapko • July 28, 2022

T-Mobile agrees to $500M settlement for 2021 cyberattack

The wireless carrier suffered a massive data breach in the summer of 2021, the fifth publicly acknowledged incident of its type in three years.

By Matt Kapko • July 25, 2022

LockBit ransomware hitting network servers

The latest tactic used to deploy the prolific malware allows threat actors to end processes, stop services and duplicate more quickly.

By Matt Kapko • July 20, 2022

Ransomware attacks surge in education sector

Colleges and universities are particularly challenged as repercussions of ransomware hit them harder and longer than other organizations.

By Matt Kapko • July 14, 2022

Threat actors favor brute force attacks to hit cloud services

Google Cloud warned that organizations face their greatest threat due to weak passwords and vulnerable software.

By Matt Kapko • July 12, 2022

Hospital ransomware concerns rise after payment vendor breach, North Korea threats

A recently disclosed ransomware attack could have exposed patient data from more than 650 healthcare providers.

By Rebecca Pifer • July 11, 2022

Pricing pressures moderate as cyber insurance market begins to level out

A surge in new buyers has begun to offset years of rising claims and higher premiums, according to data from global insurance firm Marsh.

By Naomi Eide • July 1, 2022

Ransomware groups shift tactics and objectives

Malware can play a major or nonexistent role in ransomware attacks. Threat actors are often only in it for the money.

By Matt Kapko • June 15, 2022

How and why ransomware responses go haywire

A lack of fortitude and preparation on the communications front often puts enterprises at risk for greater harm.

By Matt Kapko • June 13, 2022

5 takeaways from the RSA Conference

The event tried to pick up where it left off 28 months ago. Can defenders keep up with the accelerated pace and scale of the cyber threat?

By Matt Kapko • June 13, 2022

America's cyber chiefs have a long to-do list

The federal government wants to lead by example and communicate the urgency of the moment. First, it needs to get its security affairs in order. 

By Matt Kapko • June 9, 2022

Threat hunters minimize Russia's cyber prowess

U.S. organizations have a lot to learn from Ukrainian cyber defenders’ sophisticated resiliency during hostile conditions.

By Matt Kapko • June 9, 2022

Food supplier cyber risk spreads 1 year after JBS attack

Ransomware attacks target common vulnerabilities like legacy OT systems and equipment that lacks modern security tools.

By Matt Kapko • June 2, 2022

Conti ransomware gang grows brash and flames out. What's next?

The group's reported demise is likely a diversion. Members of the group still pose a significant ransom and data extortion threat to enterprises.

By Matt Kapko • May 31, 2022

Google Cloud positions itself as a 'standalone security brand'

The platform reinforced its bid to become an all-inclusive security provider with forthcoming services for open source software and zero-trust architecture.

By Matt Kapko • May 24, 2022

How the Colonial Pipeline attack instilled urgency in cybersecurity

The federal government and private sector are still coming to terms with how to protect operational technology in an increasingly volatile threat environment.

By David Jones • May 17, 2022

US, allies blame Russia for Viasat cyberattack

The Five Eyes and other EU authorities linked Russia to a series of web defacement, DDoS and destructive wiper attacks in the weeks leading up to the Ukraine invasion.

By David Jones • May 11, 2022