Today’s special columnist, Lior Div of Cybereason, says Colonial Pipeline reportedly paying a $5 million ransom could up the ransomware game with even more attacks on networks and higher ransom demands.
Today’s columnist, Grant Geyer of Claroty, offers some actionable advice in the wake of the Colonial Pipeline cyberattack.
Today’s special columnist, Scott Register of Keysight Technologies, says government and industry must come together to secure the nation’s critical infrastructure in the wake of the Colonial Pipeline hack.
As Colonial Pipeline struggles to return to operations amid a crippling ransomware attack, how will law enforcement leverage tech, partnership with industry, and policy to manage the threat? During a recent SC Media eSummit on ransomware, Herb Stapleton, cyber division section chief at the FBI, offered details on lessons that emerged during 2020, and how they will shape efforts in 2021 to respond to attacks.
What does the U.S. do about criminals protected by their own governments? That question becomes more complicated with attacks against critical infrastructure, which is privately owned and operated, but also intrinsically tied to national security. Those distinctions make these companies high-value targets, which many argue are in government’s best interest to protect.
The message from the White House, that the onus is largely on Colonial Pipeline to manage its own security, reignites an ongoing debate about the roles and responsibilities for protecting critical infrastructure networks.
The situation still unfolding with Colonial demonstrates the distinct vulnerabilities that face any organization with network sprawl, as multiple, often unique points of potential failure must be properly hardened.
BakerHostetler, a law firm with a massive data and privacy presence, compiles data from their client’s experiences to offer a rare lawyer’s perspective on cyber statistics. SC spoke to Craig Hoffman, partner at BakerHostetler and the main editor of the report, about the real outcomes from breaches.
Today’s columnist, Carolyn Crandall of Attivo Networks, says preventing ransomware attackers from taking over Active Directory stops them from targeting the most valuable data.
A ransomware group caught targeting a recently patched SonicWall vulnerability leveraged that vulnerability before the patch became available, Mandiant reported Thursday.
