April 16, 2024 at 12:54PM Join the one-day virtual summit focusing on ransomware attacks and preparing your organization for defense and recovery. Sessions cover battling ransomware before it strikes, building zero trust resilience, demystifying modern ransomware tradecraft, improving preparedness plans, and radical resilience. Register to access all sessions, networking, expo, resources, and more. Sponsored by … Read more
April 1, 2024 at 10:10AM A global proactive and collaborative cybersecurity approach, beyond public/private partnerships, is essential to combat professional ransomware gangs. Based on the meeting notes, the key takeaway is that a global proactive and collaborative approach to cybersecurity is vital in combating the growing threat of professional ransomware gangs, going beyond traditional public/private … Read more
February 14, 2024 at 07:15AM Summary: The financial services sector faces escalating cybersecurity challenges as cybercriminals employ advanced tactics, AI, and deep fake technology. Recent trends reveal a surge in cyberattacks, data breaches, and state-sponsored threats. Community banks are particularly vulnerable and must address cloud security, ransomware, vendor risk, regulatory compliance, and talent shortages. Proactive … Read more
January 30, 2024 at 11:54AM Ransomware threats have intensified in 2023, with criminals now focusing on data extraction instead of encryption. The Delinea survey of US IT and security decision makers revealed a significant increase in ransomware attacks and victims who paid the ransom. Additionally, the report highlights the impact of cyber insurance on the … Read more
January 26, 2024 at 07:58PM The Trend Vision One™ platform integrates AI-powered email and collaboration security to address the growing need for streamlined IT and security operations. It provides comprehensive threat protection, detection, and response across email, users, endpoint, cloud, and network, with centralized visibility and management. It also enables proactive containment of threats and … Read more
January 23, 2024 at 03:14AM The Kasseika ransomware group has been observed deploying BYOVD attacks, utilizing PsExec and exploiting Martini driver. It is suggested that the group may have acquired access to the source code of BlackMatter ransomware. The attack chain involves targeted phishing for initial access followed by remote administration tools and defense evasion … Read more
January 19, 2024 at 04:48PM TeamViewer is widely used by organizations for remote support and access. However, attackers have exploited it for ransomware deployment. Huntress reported two failed attempts involving initial access via TeamViewer. Past incidents also show TeamViewer’s misuse. TeamViewer has security measures, but incidents often result from weak security practices. The company recommends … Read more
December 29, 2023 at 01:06AM Microsoft has disabled the ms-appinstaller protocol handler by default due to abuse by threat actors distributing malware. Malicious MSIX application packages are used to deliver ransomware via Microsoft Teams or fake advertisements. Multiple financially motivated hacking groups have exploited the App Installer service. This is not the first time Microsoft … Read more
December 22, 2023 at 11:03AM When AlphV/BlackCat’s website went down, it sparked excitement among cybersecurity defenders who believed law enforcement had busted the cyber criminal crew. Though the website is now back, skepticism remains about its explanation for the outage. Singapore-based Group-IB’s 20th anniversary was celebrated with insights into infiltrating ransomware groups, shedding light on … Read more
November 8, 2023 at 04:29AM Blackfog is offering a webinar on November 15th to discuss their on-device anti data exfiltration technology. The webinar will address the importance of preventing data exfiltration and how their AI-based behavioural analytics can limit unauthorized data transfer. The event will also cover the limitations of traditional AV solutions and highlight … Read more