Over on SuspectFile, Marco A. De Felice writes: This interview provides a detailed look at Dragon Ransomware, a group active in the cybercrime landscape that combines a defined organizational structure with advanced technological expertise. Their statements shed light on operational elements and motivations that help to better understand the internal dynamics of these illicit activities….
Category: Commentaries and Analyses
Defending Data Breach Class Actions
Mark P. Henriques of Womble Bond Dickinson has a content-rich post for defense lawyers: Class actions arising from data breach represented the fastest growing segment of class action filings. In 2023, more than 2000 class actions were filed, more than triple the amount filed in 2022.1 These cases were filed in federal and state courts…
Credential phishing attacks up over 700 percent
Ian Barker reports: Phishing remains one of the most significant cyber threats impacting organizations worldwide and a new report shows credential theft attacks surged dramatically in the second half of 2024, rising by 703 percent. The report from SlashNext shows that overall, email-based threats rose by 202 percent over the same period, with individual users receiving…
Dragos Industrial Ransomware Analysis: Q3 2024
Abdulrahman H. Alamri and Lexie Mooney of Dragos write: The third quarter (July – September) of 2024 brought transformative shifts to the ransomware landscape, emphasizing its dynamic and continuously evolving nature. The ransomware threat ecosystem remained highly active in the third quarter, fueled by new groups, rebranding of existing entities, expansion of initial access broker…
A positive example of forthright breach disclosure (1)
Update: The notification DataBreaches read is not what was sent out to affected consumers. That one can be found on pages 3 and 4 of the embedded file. The consumer version is not as detailed as the disclosure I have raved about. But do read about the one they sent New Hampshire that was excellent….
Granite School District breach worse than the district has revealed — former employee (1)
Some former employees of Granite School District in Utah are reporting frustration and anger with the district’s incident response to an attack by the Rhysida group. One has written up what he found when he examined the publicly leaked data. On September 20, 2024, Granite became aware of suspicious activity on its network. An investigation…