Social Engineering Tactics in Ransomware Distribution
AI-fueled social engineering tactics are a potent initial infection vector for ransomware as well as a myriad of other cyber threats.
Ransom malware, or ransomware, is malicious software that prevents users from accessing their system, personal files, and other data—typically through encryption—while demanding a ransom payment to reinstate access. Alternatively, ransomware campaigns may threaten to publish personal or sensitive materials if a ransom is not paid.
Cyber Insurance Tightens the Reins to Lower Risk
Human error, lack of security protocols, and acts of war are now part of the cyber insurance exclusion criteria that could void your coverage.
Defense-in-Depth: A Layered Strategy for Modern Cybersecurity
This post explores Defense-in-Depth, a comprehensive strategy with a multi-layered approach to modern threat protection.
The Criminal Elements of the Ransomware Ecosystem
This post unpacks the criminal elements in the ransomware ecosystem: from developers and distributors to negotiators and even PR specialists.
Ransomware: From Infection to Mitigation
Modern cyber risk management requires understanding ransomware. This post covers the basics from infiltration to extortion, as well as prevention and protection.
Cybercrime: A Comprehensive Overview
This broad overview of cybercrime includes the main types of cybercrime, underlying motivations, societal impact, and tactics for prevention.
Bumblebee Malware Distributed via WeTransfer or Smash
Threat Advisory: Attackers are using file-sharing services like Smash or WeTransfer to deliver Bumblebee malware disguised as RFPs.
Qakbot: Fast Moving Attacks and Ransomware Collaborations
The latest string of attacks using Qakbot malware are breaching networks and successfully deploying ransomware in less than half a day.
Cobalt Strike Threat Trend Analysis
A Global Cobalt Strike activity trend analysis over Q1 of 2022 offers situational awareness into one of the most prevalent attack frameworks.
The Writing on the Wall: Accountability is Coming
The Strengthening American Cybersecurity Act is necessary to protect the Nation’s critical infrastructure. But is it enough?