Ransomware

Center of Excellence

Ransomware

MIPS chips targeted by new P2Pinfect malware in Redis server and IoT-based attacks

The move by the threat actors to attack 32-bit MIPS processors reflects an attempt to propagate the P2Pinfect malware to a broader range of targets.

Ransomware

Fidelity National Financial back to ‘normal business operations’ after cyberattack

All roads in the FNF case lead to a ransomware incident, but there’s still no confirmation which group executed the attack or if a ransom was paid.

Ransomware

Same threats, different ransomware

A threat cluster's switch from Vice Society to Rhysida.

Ransomware

Black Basta’s ransom haul tops $100M in less than 2 years

Analysis reveals 18 of ransomware gang Black Basta’s 300-plus victims were extorted over $1 million each, with one handed over $9 million.

Vulnerability Management

Cybertruck, Okta, Google, Black Basta, Zoom, Unitronics, Aaran Leyland, and More – SWN #345

Cybertruck, Okta, Google and More Google, Black Basta, Zoom, Unitronics, Aaran Leyland, and More News on the Security Weekly News.

Footprints of human feet on the sand near the water on the beach

Ransomware

Step-by-step through the Money Message ransomware

Money Message is an insidious ransomware family known for resisting detection and remediation in various ways. We walk through a recent case.

Ransomware

AI and Ransomware dominate the news cycles – ESW #341

Nine out of the ten funding articles mention AI - they're either using it in their products, or protecting AI use cases (particularly GenAI and LLM use). We discuss Broadcom's closing of the VMware acquisition, how they operate similarly to private equity firms, and how it's mostly bad news for VMware employees and customers. Some weird legal ca...

Emergency room entrance at night with ambulance

Ransomware

Thanksgiving week ransomware attack hits Ardent Health hospitals in 6 states

More than 200 sites of care and 30 hospitals in Ardent Health Services' system were affected by the ransomware attack, which was discovered Thanksgiving morning.

Ransomware

Ransomware actor exploits unsupported ColdFusion servers — but comes away empty-handed

Multiple LockBit knock-off attacks in September targeting obsolete software foiled, exposing tactics and tools.

Ransomware

How to use intelligence on failed ColdFusion attack to bolster your ransomware defenses

Some immediate lessons for security teams to heed.

Sponsor Content

DOWNLOAD WHITEPAPER

Related Events

Subscribe to Ransomware

The most current articles, analysis and research around ransomware delivered weekly

Sponsor Content

Related Events

Ransomware attack lessons, from MOVEit and Doubledrive to MGM/Caesars

Cyber Resilience in the Ransomware and Wiper Era New Strategies for CISOs to Protect

The changing face of ransomware, and how to respond

Related Videos

Threat predictions for 2024: Chained AI and CaaS operations give attackers more ‘easy’ buttons than ever

Lessons from Ukraine: How cyberwar shapes security at home

Watch: FBI encourages reporting of cyber incidents, backs legislation

Subscribe to Ransomware

Perspectives

When does it make sense to pay the ransom?

ALPHV/BlackCat reporting to the SEC could become the ‘new normal’ for ransomware operators

SolarWinds Fallout: Why CISOs need proof of resilience to avoid fines – or worse

Briefs

60 credit unions knocked offline temporarily by third-party ransomware attack

Fake Google Update and Microsoft One Drive binaries used in malicious attacks

macOS devices targeted with Turtle ransomware