Ransomware

Center of Excellence

Ransomware

Black Basta’s ransom haul tops $100M in less than 2 years

Analysis reveals 18 of ransomware gang Black Basta’s 300-plus victims were extorted over $1 million each, with one handed over $9 million.

Vulnerability Management

Cybertruck, Okta, Google, Black Basta, Zoom, Unitronics, Aaran Leyland, and More – SWN #345

Cybertruck, Okta, Google and More Google, Black Basta, Zoom, Unitronics, Aaran Leyland, and More News on the Security Weekly News.

Ransomware

Same threats, different ransomware

A threat cluster's switch from Vice Society to Rhysida.

Ransomware

AI and Ransomware dominate the news cycles – ESW #341

Nine out of the ten funding articles mention AI - they're either using it in their products, or protecting AI use cases (particularly GenAI and LLM use). We discuss Broadcom's closing of the VMware acquisition, how they operate similarly to private equity firms, and how it's mostly bad news for VMware employees and customers. Some weird legal ca...

Emergency room entrance at night with ambulance

Ransomware

Thanksgiving week ransomware attack hits Ardent Health hospitals in 6 states

More than 200 sites of care and 30 hospitals in Ardent Health Services' system were affected by the ransomware attack, which was discovered Thanksgiving morning.

Footprints of human feet on the sand near the water on the beach

Ransomware

Step-by-step through the Money Message ransomware

Money Message is an insidious ransomware family known for resisting detection and remediation in various ways. We walk through a recent case.

Ransomware

How to use intelligence on failed ColdFusion attack to bolster your ransomware defenses

Some immediate lessons for security teams to heed.

Malware

Chimera, Aliquippa, FNF, Lazarus, DARPA, Namedrop, Google, Aaran Leyland, and More – SWN #344

Chimera, Aliquippa, FNF, Lazarus, DARPA, Ransom Payments, Namedrop, Google, Aaran Leyland, and more are on this edition of the Security Weekly News.

Ransomware

Ransomware actor exploits unsupported ColdFusion servers — but comes away empty-handed

Multiple LockBit knock-off attacks in September targeting obsolete software foiled, exposing tactics and tools.

Today’s columnist, Andy Stone of Pure Storage, offers tips on when organizations should opt to pay a ransom. (Stock Photo, Getty Images)

Ransomware

What a failed attack against ColdFusion revealed about ransomware tools and tactics

Recent attempted ransomware attacks shine a light on effective defenses.

Sponsor Content

DOWNLOAD WHITEPAPER

Related Events

Subscribe to Ransomware

The most current articles, analysis and research around ransomware delivered weekly

Sponsor Content

Related Events

Cyber Resilience in the Ransomware and Wiper Era New Strategies for CISOs to Protect

The changing face of ransomware, and how to respond

Unveiling the Hidden Threat: Hybrid Attackers Leveraging Identities to Execute Ransomware

Related Videos

Threat predictions for 2024: Chained AI and CaaS operations give attackers more ‘easy’ buttons than ever

Lessons from Ukraine: How cyberwar shapes security at home

Watch: FBI encourages reporting of cyber incidents, backs legislation

Subscribe to Ransomware

Perspectives

When does it make sense to pay the ransom?

ALPHV/BlackCat reporting to the SEC could become the ‘new normal’ for ransomware operators

SolarWinds Fallout: Why CISOs need proof of resilience to avoid fines – or worse

Briefs

Qlik Sense flaws leveraged in new CACTUS ransomware attacks

Staples cyberattack disrupts online orders

Booking.com customers targeted with Vidar infostealer