Cyberattacks
-
Internal Cisco data stolen after employee hit by voice phishing attack
Cisco identified the attacker as an initial access broker with ties to multiple cybercrime and ransomware groups.
By Matt Kapko • Aug. 11, 2022 -
Cloudflare thwarts ‘sophisticated’ phishing attack strategy that bruised Twilio
Dissimilar responses from Cloudflare and Twilio bear important lessons in transparency, resiliency and access.
By Matt Kapko • Aug. 9, 2022 -
Twilio employees duped by text message phishing attack
The communications provider declined to say how many employees were duped and the amount of customers compromised.
By Matt Kapko • Aug. 8, 2022 -
Encevo stays resilient post-attack, but it’s still assessing the data damage
The Luxembourg energy supplier’s ability to thwart a shutdown likely empowered its refusal to pay a ransom.
By Matt Kapko • Aug. 8, 2022 -
The 11 most-prevalent malware strains of 2021 fuel cybercrime
Cybercriminals remain the most prolific users of malware, wielding these top strains to deliver ransomware and steal data.
By Matt Kapko • Aug. 5, 2022 -
Luxembourg energy supplier Encevo hit by ransomware attack
The group behind the attack threatened to leak more than 150 gigabytes of sensitive data on Monday.
By Matt Kapko • Aug. 1, 2022 -
Most cyberattacks come from ransomware, email compromise
Attackers are scanning for vulnerabilities in unpatched systems within 15 minutes, stressing the pace and scale of the threat.
By Matt Kapko • Aug. 1, 2022 -
Sponsored by Delinea
Benefits of modern PAM: Efficiency, security, compliance
Cloud-ready Privileged Access Management (PAM) is vital to your cyber defense strategy.
By Shweta Khare, Cybersecurity Evangelist, Delinea • Aug. 1, 2022 -
Entrust acknowledges June cyberattack, remains tight-lipped on the details
The cybersecurity vendor has yet to disclose how the incident occurred, the type of data stolen and if ransomware was involved.
By Matt Kapko • July 28, 2022 -
T-Mobile agrees to $500M settlement for 2021 cyberattack
The wireless carrier suffered a massive data breach in the summer of 2021, the fifth publicly acknowledged incident of its type in three years.
By Matt Kapko • July 25, 2022 -
LockBit ransomware hitting network servers
The latest tactic used to deploy the prolific malware allows threat actors to end processes, stop services and duplicate more quickly.
By Matt Kapko • July 20, 2022 -
Ransomware attacks surge in education sector
Colleges and universities are particularly challenged as repercussions of ransomware hit them harder and longer than other organizations.
By Matt Kapko • July 14, 2022 -
Threat actors favor brute force attacks to hit cloud services
Google Cloud warned that organizations face their greatest threat due to weak passwords and vulnerable software.
By Matt Kapko • July 12, 2022 -
Hospital ransomware concerns rise after payment vendor breach, North Korea threats
A recently disclosed ransomware attack could have exposed patient data from more than 650 healthcare providers.
By Rebecca Pifer • July 11, 2022 -
Pricing pressures moderate as cyber insurance market begins to level out
A surge in new buyers has begun to offset years of rising claims and higher premiums, according to data from global insurance firm Marsh.
By Naomi Eide • July 1, 2022 -
Ransomware groups shift tactics and objectives
Malware can play a major or nonexistent role in ransomware attacks. Threat actors are often only in it for the money.
By Matt Kapko • June 15, 2022 -
How and why ransomware responses go haywire
A lack of fortitude and preparation on the communications front often puts enterprises at risk for greater harm.
By Matt Kapko • June 13, 2022 -
5 takeaways from the RSA Conference
The event tried to pick up where it left off 28 months ago. Can defenders keep up with the accelerated pace and scale of the cyber threat?
By Matt Kapko • June 13, 2022 -
America's cyber chiefs have a long to-do list
The federal government wants to lead by example and communicate the urgency of the moment. First, it needs to get its security affairs in order.
By Matt Kapko • June 9, 2022 -
Threat hunters minimize Russia's cyber prowess
U.S. organizations have a lot to learn from Ukrainian cyber defenders’ sophisticated resiliency during hostile conditions.
By Matt Kapko • June 9, 2022 -
Food supplier cyber risk spreads 1 year after JBS attack
Ransomware attacks target common vulnerabilities like legacy OT systems and equipment that lacks modern security tools.
By Matt Kapko • June 2, 2022 -
Conti ransomware gang grows brash and flames out. What's next?
The group's reported demise is likely a diversion. Members of the group still pose a significant ransom and data extortion threat to enterprises.
By Matt Kapko • May 31, 2022 -
Google Cloud positions itself as a 'standalone security brand'
The platform reinforced its bid to become an all-inclusive security provider with forthcoming services for open source software and zero-trust architecture.
By Matt Kapko • May 24, 2022 -
How the Colonial Pipeline attack instilled urgency in cybersecurity
The federal government and private sector are still coming to terms with how to protect operational technology in an increasingly volatile threat environment.
By David Jones • May 17, 2022 -
US, allies blame Russia for Viasat cyberattack
The Five Eyes and other EU authorities linked Russia to a series of web defacement, DDoS and destructive wiper attacks in the weeks leading up to the Ukraine invasion.
By David Jones • May 11, 2022