Malware

Proactive Strategies to Prevent Ransomware Attacks

Mar 4, 2024 By SecurityScorecard In SecurityScorecard

In today’s digital age, ransomware attacks have emerged as one of the most formidable threats to organizations worldwide. These malicious software attacks encrypt files on a device, rendering them inaccessible to users, and demand a ransom for decryption keys. The impact of ransomware can be devastating, leading to significant financial losses, operational downtime, and reputational damage.

Read Post

SecurityScorecard

Read more about Proactive Strategies to Prevent Ransomware Attacks

Cyber Security Decoded: Sherrod DeGrippo on Threat Models

Mar 1, 2024 By Rubrik In Rubrik

If you want to stay on Sherrod DeGrippo’s good side…cool it with the threat models!

View Video

Rubrik

Read more about Cyber Security Decoded: Sherrod DeGrippo on Threat Models

Active Directory Ransomware Attacks

Mar 1, 2024 By Jonathan Blackwell In Netwrix

Organizations worldwide use Active Directory (AD) as their primary identity service, which makes it a top target for ransomware attacks. This article explains how adversaries exploit Active Directory during ransomware attacks and provides strategies and tools for defending against this modern menace.

Read Post

Netwrix

Read more about Active Directory Ransomware Attacks

Automated Threat Analysis from Splunk Attack Analyzer

Mar 1, 2024 By Splunk In Splunk

Learn how Splunk Attack Analyzer automates threat analysis for credential phishing and malware threats.

View Video

Splunk

Read more about Automated Threat Analysis from Splunk Attack Analyzer

#106 - Intel Chat: LockBit, TicTacToe Dropper, Google Cloud Run & I-Soon

Mar 1, 2024 By LimaCharlie In LimaCharlie

In this episode of The Cybersecurity Defenders Podcast, we discuss some cutting-edge intel coming out of LimaCharlie's community Slack channel.

View Video

LimaCharlie

Read more about #106 - Intel Chat: LockBit, TicTacToe Dropper, Google Cloud Run & I-Soon

Communicating Cyber Risk to Executives and Boards with Shamane Tan

Feb 29, 2024 By Rubrik In Rubrik

In this episode of Cyber Security Decoded from Rubrik Zero Labs, host Steve Stone is joined by Chief Growth Officer at Sekuro and Best-Selling Author Shamane Tan to discuss differences in the cybersecurity landscape between the US and APAC, communication strategies for CISOs, building trust for better cybersecurity outcomes, improving organizational resilience, and diversity in the cybersecurity field.

View Video

Rubrik

Read more about Communicating Cyber Risk to Executives and Boards with Shamane Tan

How Weak Passwords Lead to Ransomware Attacks

Feb 29, 2024 By Aranza Trevino In Keeper

Weak passwords can lead to ransomware attacks because they can be easily compromised through password-cracking techniques, allowing cybercriminals to gain access to an organization’s network where they can then inject ransomware. Often, when people think of the causes of ransomware infections, their first thought is it was caused by a phishing email.

Read Post

Keeper

Read more about How Weak Passwords Lead to Ransomware Attacks

The Anatomy of an ALPHA SPIDER Ransomware Attack

Feb 29, 2024 By Jean-Philippe Teissier In CrowdStrike

Over the last two years, CrowdStrike Services has run several incident response (IR) engagements — in both pre- and post-ransomware situations — in which different ALPHA SPIDER affiliates demonstrated novel offensive techniques coupled with more commonly observed techniques. The events described in this blog have been attributed to ALPHA SPIDER affiliates by CrowdStrike Counter Adversary Operations.

Read Post

CrowdStrike

Read more about The Anatomy of an ALPHA SPIDER Ransomware Attack

Qilin Ransomware: Get the 2024 Lowdown

Feb 29, 2024 By Adi Bleih In Cyberint

Qilin operates as an affiliate program for Ransomware-as-a-Service, employing a Rust-based ransomware to target victims. Qilin ransomware attacks are often tailored for each victim to maximize their impact, utilizing tactics like altering filename extensions of encrypted files and terminating specific processes and services.

Read Post

Cyberint

Read more about Qilin Ransomware: Get the 2024 Lowdown

Busting the SugarLocker Syndicate: Syndicate's Secrets and Takedown Tactics

Feb 28, 2024 By Foresiet In Foresiet

Sugarlocker Summary On February 23, 2022, the operator linked to the SugarLocker ransomware, utilizing the pseudonym "gustavedore," was conspicuously seeking new partnerships on the Dark Web. SugarLocker operates through a highly flexible Ransomware-as-a-Service (RaaS) framework, facilitating extensive customization for its users in the clandestine corners of the Dark Web.

Read Post