Threats: Page 2


  • Image attribution tooltip
    Drew Angerer via Getty Images

    REvil, DarkSide highlight surge in Q2 ransomware attacks: report

    The government sector saw more ransomware attacks, while financial services companies faced increased threats in the cloud, according to McAfee Enterprise research.

    By Oct. 4, 2021
  • Image attribution tooltip
    Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images

    With remote work, any employee could be an insider threat. How is CISA mitigating the risk?

    CISA released a self-assessment tool which organizations can use to generate reports on their tolerance and capabilities for preventing insider threats. 

    By Sept. 30, 2021
  • Image attribution tooltip
    Jeenah Moon via Getty Images
    Deep Dive

    Microsoft, under attack from threat actors, positions itself as cyber guardian

    The pandemic created more business opportunity, but malicious actors dogged the company's technology stack. Now, the very same products touted as security defense tools are under fire. 

    By Sept. 29, 2021
  • Image attribution tooltip
    Sean Gallup via Getty Images

    Microsoft warns of new credential-stealing backdoor from SolarWinds threat actor

    The newly identified malware, called FoggyWeb, has been observed since April and is used to steal from compromised AD FS servers. 

    By Sept. 28, 2021
  • Image attribution tooltip
    Sean Gallup via Getty Images

    Ransomware compromises customer data in farm co-op attack

    A Minnesota-based co-op became the second agricultural firm in recent days to be the target of ransomware, just weeks after the FBI and CISA warned of a wider threat to the industry.

    By Updated Sept. 24, 2021
  • Image attribution tooltip
    Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images

    After 400 attacks, feds warn of Conti ransomware

    Nearly a year after U.S. security agencies warned the healthcare sector about Ryuk, the same threat actors are reemerging as a risk to businesses.

    By Sept. 23, 2021
  • Image attribution tooltip

    Photo by cottonbro from Pexels

    Enterprises plan major investments as remote work escalates security risk: report

    Companies face significant challenges in managing security as the work-from-home model moves from an emergency stopgap to a more permanent environment. 

    By Sept. 22, 2021
  • Image attribution tooltip
    Chip Somodevilla via Getty Images

    Treasury sanctions crypto exchange Suex in push to thwart ransomware

    While more legal measures await international cybercrime, the government is sending interim messages to ransomware gangs.

    By Sept. 22, 2021
  • Image attribution tooltip
    Joe Raedle via Getty Images

    Fortinet credential drop linked to fissure in ransomware group

    Researchers linked a new ransomware syndicate called Groove to the Fortinet VPN credential dump, following a rift involving affiliates of Babuk.

    By Sept. 10, 2021
  • Image attribution tooltip
    Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images

    Ransomware capitalizes on holiday weekends. Feds urge vigilance over Labor Day

    The FBI and CISA implored companies and agencies to backup data and use proactive threat-hunting measures to mitigate any potential attacks. 

    By Sept. 1, 2021
  • Image attribution tooltip
    Leon Neal via Getty Images

    What's at stake in a credential stuffing attack

    Attackers gain a network foothold by using stolen credentials under the guise of an authenticated trusted employee or third party.

    By Sue Poremba • Sept. 1, 2021
  • Image attribution tooltip
    gopixa via Getty Images
    Opinion

    Time to be less dramatic about ransomware

    Security is an aspect of normal operations. Proactive, broad measures can mitigate the risk of whatever threat is currently present or yet to come.

    By Patricia Muoio • Aug. 31, 2021
  • Image attribution tooltip
    Drew Angerer via Getty Images

    Facility management worried about OT cybersecurity, but few plan to fix it

    Seven in 10 managers are concerned about having adequate levels of cybersecurity, but only one-third are planning new investments, Honeywell found.

    By Aug. 27, 2021
  • Image attribution tooltip
    Sean Gallup via Getty Images

    More threats target Linux, a foundation for the cloud, report finds

    As enterprises embrace cloud, malicious actors are finding sophisticated methods to threaten users for computing power and data theft. 

    By Aug. 25, 2021
  • Image attribution tooltip
    Amilcar Orfali / Stringer via Getty Images

    Insider risk surges as resignations mount

    Millions of U.S. workers are walking away from existing jobs, increasing the risk to corporate data and, in many cases, source code.

    By Aug. 13, 2021
  • Image attribution tooltip
    Patrick Lux via Getty Images

    Is XDR the next best security solution?

    SOCs are still learning about extended detection and response and how to apply it to an existing security stack. But when properly deployed, it's an asset for incident response.

    By Aug. 11, 2021
  • Image attribution tooltip
    Jeenah Moon via Getty Images

    APT actors target Microsoft 365 using novel techniques

    Nation states are combining old techniques with newer methods to establish persistence and steal valuable data from organizations. 

    By Aug. 6, 2021
  • Image attribution tooltip
    Tomohiro Ohsumi via Getty Images

    Initial access brokers sell a way in, widening the ransomware market

    The most popular network access points sold on the dark web offer insight for security teams to better understand what is most vulnerable to ransomware.

    By Aug. 2, 2021
  • Image attribution tooltip
    Sean Gallup via Getty Images

    OT cyberattacks could threaten human safety by 2025: Gartner

    Critical infrastructure facilities are struggling to contain sophisticated malware and ransomware threats, Gartner research shows.

    By July 26, 2021
  • Image attribution tooltip
    Sean Gallup via Getty Images

    Why cybersecurity keeps payments executives up at night

    Payments are a critical part of the nation's infrastructure, so executives in the industry are under pressure to understand the evolving threat landscape.

    By Mercedes Cardona • July 21, 2021
  • Image attribution tooltip
    Traitov/iStock/Getty via Getty Images

    Ransomware defenses fail to prevent attack: report

    While 54% of organizations conduct anti-phishing training, 24% of ransomware attacks used phishing as the point of entry, a Cloudian survey found.

    By July 20, 2021
  • Image attribution tooltip
    Sean Gallup via Getty Images

    REvil vanished from the internet. But ransomware attackers never fully disappear

    The hacking group's absence left echoes of high-profile ransomware attacks in its wake. But few think the group is gone for good. Consider this a brief respite.

    By July 19, 2021
  • Image attribution tooltip
    Leon Neal via Getty Images

    Cloud targeted in widespread brute force campaign

    The defense, logistics and energy sectors are among the various entities under threat by the campaign, which targets organizations using Microsoft Office 365.

    By July 2, 2021
  • Image attribution tooltip

    Markus Spiske

    Cobalt Strike rising in prominence among criminal threat actors

    The penetration testing tool became a favored weapon in high-profile campaigns, including SolarWinds and the recent Nobelium email attacks.

    By July 1, 2021
  • Image attribution tooltip
    Patrick Lux via Getty Images

    Spoofing, spear phishing dominate BEC attacks: report

    Threat actors are targeting the C-suite and corporate finance departments with the goal of stealing credentials or unleashing malicious payloads. 

    By June 29, 2021