Federal authorities warn MedusaLocker ransomware targeting remote desktop vulnerabilities

The ransomware as a service group began targeting healthcare and other industries in 2019. In recent months, activity has surged once again.

By David Jones • July 1, 2022

Cash-strapped Main Street organizations face global cyberthreats

A House subcommittee hearing in Michigan helped show the persistent risks faced by local schools, government agencies and Main Street businesses.

By David Jones • June 29, 2022

Explore the Trendline➔

Risk Management

An esclation of cyber risks facing businesses and government has made cyber resilience a major priority. 

By Cybersecurity Dive staff

Is your remote IT job candidate legit?

Organizations are seeing a rise in deepfakes and stolen identities during the job application process, the FBI said.

By Naomi Eide • June 29, 2022

Ransomware groups shift tactics and objectives

Malware can play a major or nonexistent role in ransomware attacks. Threat actors are often only in it for the money.

By Matt Kapko • June 15, 2022

5 takeaways from the RSA Conference

The event tried to pick up where it left off 28 months ago. Can defenders keep up with the accelerated pace and scale of the cyber threat?

By Matt Kapko • June 13, 2022

America's cyber chiefs have a long to-do list

The federal government wants to lead by example and communicate the urgency of the moment. First, it needs to get its security affairs in order. 

By Matt Kapko • June 9, 2022

Threat hunters minimize Russia's cyber prowess

U.S. organizations have a lot to learn from Ukrainian cyber defenders’ sophisticated resiliency during hostile conditions.

By Matt Kapko • June 9, 2022

Food supplier cyber risk spreads 1 year after JBS attack

Ransomware attacks target common vulnerabilities like legacy OT systems and equipment that lacks modern security tools.

By Matt Kapko • June 2, 2022

Russia, backed by ransomware gangs, actively targeting US, FBI director says

The FBI is laser focused on preventing a destructive attack, FBI Director Christopher Wray said. The agency previously, helped to disrupt a 2021 Iran-backed attack on Boston Children’s Hospital. 

By David Jones • June 2, 2022

Conti ransomware gang grows brash and flames out. What's next?

The group's reported demise is likely a diversion. Members of the group still pose a significant ransom and data extortion threat to enterprises.

By Matt Kapko • May 31, 2022

Persistent vulnerabilities put VMware on the defense

Recent flaws earned the company CISA's 10th emergency directive, the latest in a series of potential high-impact flaws for enterprise users.

By Matt Kapko • May 27, 2022

Cybersecurity threat extends to utility credit ratings: Fitch

Electric utilities, up against growing cyberthreats and poor security practices, "could result in negative rating actions," Fitch Ratings said.

By Robert Walton • May 26, 2022

Google Cloud positions itself as a 'standalone security brand'

The platform reinforced its bid to become an all-inclusive security provider with forthcoming services for open source software and zero-trust architecture.

By Matt Kapko • May 24, 2022

Russian disinformation campaigns disrupt Ukraine narrative

State-linked, foreign groups use social media and phishing to manipulate Ukraine citizens and western allies.

By David Jones • May 24, 2022

CISOs say they're at less risk of a substantial cyberattack

A modest confidence boost and more deliberate security strategies follow two years of pandemic-induced chaos, a Proofpoint-sponsored survey found.

By Matt Kapko • May 17, 2022

Enterprises rarely follow advice to never pay ransoms

Ransomware foists a difficult choice on executives and very few leave business operations in limbo to test a best practice.

By Matt Kapko • May 16, 2022

Emotet reemerges as top malware in circulation

The botnet’s activity surged 2,823% between Q4 2021 and Q1 2022, displaying a more recent shift in targets, HP Wolf Security analysts said.

By Matt Kapko • May 12, 2022

US, allies blame Russia for Viasat cyberattack

The Five Eyes and other EU authorities linked Russia to a series of web defacement, DDoS and destructive wiper attacks in the weeks leading up to the Ukraine invasion.

By David Jones • May 11, 2022

SEO-savvy threat actors drive surge in malware downloads

Cybercriminals flooded Google and Bing with malicious PDF files that contain commonly searched keywords, resulting in a 450% annualized increase in phishing downloads.

By Matt Kapko • May 10, 2022

Threat actor launches email attacks to lift corporate M&A secrets, Mandiant says

The suspected threat actor, UNC3524, lurks in victim environments for at least 18 months.

By Matt Kapko • May 5, 2022

Ukraine cyberthreat activity ramps up against critical infrastructure, governments

Researchers say state-linked and criminal activity has risen in recent weeks.

By David Jones • May 4, 2022

Familiar names top 2021's most-exploited vulnerabilities list

Top ransomware operators, including Hive and Conti, are exploiting flawed systems to launch new attacks, researchers warn.

By David Jones • May 2, 2022

Ransomware attacks, payouts soared worldwide in 2021: report

More organizations are paying ransoms as attacks grow in sophistication.

By David Jones • April 27, 2022

Emotet botnet tests new techniques after global crackdown

The once prolific botnet, returning from "spring break," is preparing a new high-volume campaign, Proofpoint researchers said. 

By David Jones • April 26, 2022

HHS warns providers of 'exceptionally aggressive' ransomware group

The Hive group practices double extortion — demanding payment to free data it has encrypted while also threatening to release the unencrypted data publicly.

By Shannon Muchmore • April 25, 2022