Malware

New Research: Ransomware Incidents Spike 84% in 2023

Feb 28, 2024 By Stu Sjouwerman In KnowBe4

Newly-released data covering cyberthreats experienced in 2023 sheds some light on how very different last year was and paints a picture of what to expect of cyber attacks in 2024. As someone who looks a lot at industry data, I really want it to be as relevant as possible. But it’s also important to see the larger trends over the recent past to begin to predict what’s to come.

Read Post

KnowBe4

Read more about New Research: Ransomware Incidents Spike 84% in 2023

How Is Ransomware Delivered?

Feb 28, 2024 By Aranza Trevino In Keeper

Some of the most common ways ransomware is delivered are through phishing emails, drive-by downloads, exploit kits and RDP exploits. According to Malwarebytes’ 2024 State of Malware report, in 2023 the number of known ransomware attacks increased by 68% from the previous year. The report also found that the largest ransom demanded in 2023 was $80 million.

Read Post

Keeper

Read more about How Is Ransomware Delivered?

Safeguarding Your Business: A Comprehensive Guide to Preventing Ransomware Attacks

Feb 28, 2024 By Sagi Brody In Opti9

February 28, 2024 | By Sagi Brody As the Chief Technology Officer at Opti9, I’ve spent over two decades navigating the ever-evolving landscape of digital infrastructure. According to the Ransomware Trends Report 2023, at least 93% of cyberattacks targeted backup infrastructure. Clearly, cyber criminals are becoming more proficient in the ability to take your data for ransom.

Read Post

Opti9

Read more about Safeguarding Your Business: A Comprehensive Guide to Preventing Ransomware Attacks

Hunting PrivateLoader: The malware behind InstallsKey PPI service

Feb 27, 2024 By André Tavares In BitSight

Since July 2022, Bitsight has been tracking PrivateLoader, the widespread malware downloader behind the Russian Pay-Per-Install (PPI) service called InstallsKey. At the time, this malware was powering the now decommissioned ruzki PPI service. Figure 1 presents a brief description of the service, which was found in their sales telegram channel. Fig. 1 - Service description on telegram channel profile (Russian and English).

Read Post

BitSight

Read more about Hunting PrivateLoader: The malware behind InstallsKey PPI service

Watch out! There are hidden dangers lurking your PDFs

Feb 27, 2024 By Luis Corrons In Avast

Avast researchers have discovered cybercriminals using an old medium (PDFs) in a new--and dangerous--way.

Read Post

Avast

Read more about Watch out! There are hidden dangers lurking your PDFs

Annual Ransomware Payments Surpass $1 Billion

Feb 27, 2024 By Stu Sjouwerman In KnowBe4

For the first time, analysis of ransomware payments made in a single year tops $1,000,000,000. This signals a massive return to more frequent, sophisticated, and successful attacks. Each year, blockchain analysis company, Chainalysis, reports on ransomware payments based on the payments made to digital wallets known to belong to cybercriminals and cybercriminal gangs.

Read Post

KnowBe4

Read more about Annual Ransomware Payments Surpass $1 Billion

Emails Are Responsible for 88% of Malicious File Deliveries

Feb 27, 2024 By Stu Sjouwerman In KnowBe4

Emails are still the most common delivery method for malicious files, according to Check Point’s Cyber Security Report for 2024. “Email-based attacks continue to be the dominant initial infection vector,” the report says.

Read Post

KnowBe4

Read more about Emails Are Responsible for 88% of Malicious File Deliveries

The Billion Dollar Cost of Cybercrime: Lessons from the LockBit Takedown

Feb 27, 2024 By James Rees In Razorthorn

The recent LockBit group take down has shown the world at large the cost of cybercrime. Initially it was reported that just over $100 million had been gathered through the nefarious acts of this particular group but, as I suspected, that initial figure was just a drop in the ocean. It turns out that the real figure was in excess of $1 billion dollars over the last four years, and I still suspect this may be more.

Read Post

Razorthorn

Read more about The Billion Dollar Cost of Cybercrime: Lessons from the LockBit Takedown

Unveiling Phemedrone Stealer: Threat Analysis and Detections

Feb 27, 2024 By Teoderick Contreras In Splunk

Recently, the cybersecurity world has been abuzz with discussions about Phemedrone, a newly emerged stealer exploiting the CVE-2023-36025 vulnerability in Microsoft Windows Defender SmartScreen. The project was most recently available on GitHub; however, the project was taken down, and the associated account was removed. Active development still occurs via Telegram.

Read Post

Splunk

Read more about Unveiling Phemedrone Stealer: Threat Analysis and Detections

The 443 Podcast - Episode 281 - Locking Up LockBit

Feb 26, 2024 By WatchGuard In WatchGuard

This week on the podcast, we cover an international law enforcement takedown of the LokBit ransomware group's infrastructure. After that, we cover a novel malware delivery vector involving an IoT "toy." We end the podcast by covering the latest White House Executive Order addressing cybersecurity in critical infrastructure. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.

View Video