Ionut Ilascu reports: The first quarter of the year recorded an increase of the average amount ransomware operators demand from their victims. Compared to the previous quarter, a 33% swell was noted, driven by the Sodinokibi and Ryuk ransomware operators. Behind this are successful attacks against large enterprises that can afford to pay top dollar to…
Category: Commentaries and Analyses
Sixth Annual Data Security Incident Response Report Released – Managing Enterprise Risks and Leveraging Data in a Digital World
There are many firms that issue yearly reports on data breach trends and incident response based on their experience. When a law firm has been involved in more than 1000 cases, it’s worth taking a look at their findings. I have always found my discussions with BakerHostetler lawyers to be informative. I’m looking forward to…
Spear-phishing campaign compromises executives at 150+ companies
Catalin Cimpanu reports: A cybercrime group operating since mid-2019 has breached the email accounts of high-ranking executives at more than 150 companies, cyber-security firm Group-IB reported today. The group, codenamed PerSwaysion, appears to have targeted the financial sector primarily, which accounted for more than half of its victims; although, victims have been recorded at companies…
Cybercriminals are using Google reCAPTCHA to hide their phishing attacks
Graham Cluley reports, “researchers at Barracuda say that they are seeing cybercriminals deploying Google’s reCAPTCHA anti-bot tool in an effort to avoid early detection of their malicious campaigns.” As the researchers explain, criminals are using reCAPTCHA walls to block the content of their phishing pages from being scanned by URL scanning services. Read more on Hot…
Zoom Gets Stuffed: Here’s How Hackers Got Hold Of 500,000 Passwords
Davey Winder reports: At the start of April, the news broke that 500,000 stolen Zoom passwords were up for sale. Here’s how the hackers got hold of them. More than half a million Zoom account credentials, usernames and passwords were made available in dark web crime forums earlier this month. Some were given away for…
Report Finds Ransomware Crews Don’t Leave After Being Paid
Organized crews of cybercriminals that attacked health care organizations and other critical services with ransomware this month kept their access to victims’ networks even after ransoms were paid, new research released by Microsoft Corp. says. In a blog post published Tuesday, Microsoft’s Threat Protection Intelligence Team said it had identified “dozens” of ransomware attacks in the…