CSO Magazine

FEBRUARY 19, 2021

Egregor is one of the most rapidly growing ransomware families. Although descriptions of the malware vary from security firm to security firm, the consensus is that Egregor is a variant of the Sekhmet ransomware family. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ]. What is Egregor?

Ransomware 119

Ransomware CSO Malware Cybersecurity 119

CSO Magazine

FEBRUARY 22, 2021

On February 4, 2021, New York became the first state in the nation to issue a cybersecurity insurance risk framework to all authorized property and casualty insurers. Get the latest from CSO by signing up for our newsletters. ]. Get the latest from CSO by signing up for our newsletters. ].

Insurance 106

Insurance Cyber Insurance CSO Ransomware 106

CyberSecurity Insiders

NOVEMBER 16, 2021

In 2020, we saw cybersecurity move from a technical problem to become a business enabler. Data from the current AT&T Cybersecurity Insights Report shows that 5G technology is being driven by the line of business and has been siloed between IT and OT organizations. Ransomware becomes the most feared adversary.

Cybersecurity 125

Cybersecurity Energy and Utilities Manufacturing Healthcare 125

CSO Magazine

MARCH 29, 2021

While sophisticated ransomware and nation-state threat actors target US critical infrastructure, the only protection most organizations have against these attacks is tight and effective cybersecurity. Learn 12 tips for effectively presenting cybersecurity to the board and 6 steps for building a robust incident response plan.

CSO 96

CSO Cybersecurity Government Ransomware 96

GlobalSign

OCTOBER 7, 2022

Another major crypto hack, this time at Binance, Ferrari denies reports of a ransomware attack, Uber's former CSO found guilty of covering up attacks

CSO 55

CSO Cybersecurity Ransomware Hacking 55

The Last Watchdog

JULY 8, 2021

It was bound to happen: a supply-chain compromise, ala SolarWinds, has been combined with a ransomware assault, akin to Colonial Pipeline, with devasting implications. Last Watchdog reached out to a roundtable of cybersecurity experts to hash over what happened — and discuss what’s likely to happen next.

Ransomware 257

Ransomware Hacking Software Architecture 257

CSO Magazine

MARCH 20, 2023

Last week, the US Cybersecurity and Infrastructure Security Agency (CISA) announced the launch of the Ransomware Vulnerability Warning Pilot (RVWP) program to "proactively identify information systems that contain security vulnerabilities commonly associated with ransomware attacks."

Ransomware 113

Ransomware Cybersecurity 113

Security Boulevard

JUNE 21, 2021

The Krebses—Chris and Brian—are not related, but they have both come out with positions on ransomware. Chris was the former head of DHS’s CISA (Cybersecurity & Infrastructure Security Agency), and Brian is a journalist and much-admired author (by me and many others) of the outstanding blog KrebsonSecurity.

Ransomware 109

Ransomware Cybersecurity CSO Insurance 109

CSO Magazine

MAY 9, 2023

In today’s increasingly hostile environment, every enterprise, be they big or small, should be concerned about cybersecurity and have access to protection from hackers, scammers, phishers, and all the rest of the host of bad actors who seem to be sprouting up around the world. To read this article in full, please click here

Cybersecurity 137

Cybersecurity Marketing Ransomware 137

CSO Magazine

JUNE 5, 2023

Research from cybersecurity services firm Bridewell assessed the current state of critical national infrastructure (CNI) threats in the UK and the US , warning that global economic downturns, geopolitical tensions, nation-state actors, and ransomware are all contributing to increasing threats faced by organizations and suppliers in the CNI space.

Cybersecurity 124

Cybersecurity Healthcare Technology Ransomware 124

CSO Magazine

APRIL 13, 2022

Penetration testing has shown cybersecurity manager David Murphy just how problematic people can be. Learn 8 pitfalls that undermine security program success and 12 tips for effectively presenting cybersecurity to the board. Sign up for CSO newsletters. ]. Sign up for CSO newsletters. ].

Penetration Testing 95

Penetration Testing CSO Phishing Passwords 95

Hot for Security

JUNE 2, 2021

TSA’s new directive mandating pipeline operators take cybersecurity seriously is being met with skepticism by experts. The directive mandates that critical pipelines report cybersecurity incidents, including potential incidents, to the Cybersecurity and Infrastructure Security Agency (CISA). That’s a years-long process.

CSO 128

CSO Cybersecurity Ransomware 128

CyberSecurity Insiders

MARCH 30, 2023

Seasoned CISOs/CSOs understand the importance of effectively communicating cyber risk and the need for investment in cybersecurity defense to the board of directors. To ensure cybersecurity becomes a strategic part of the corporate culture, it is crucial for CISOs to present the topic in a clear, concise, and compelling manner.

Cybersecurity 119

Cybersecurity Cyber Risk CISO Risk 119

CSO Magazine

SEPTEMBER 9, 2022

Retailers are fast becoming the favorite targets for ransomware criminals, with two out of three companies in the sector being attacked last year, according to a new report from cybersecurity firm Sophos. Of 422 retail IT professionals surveyed internationally, 77% said their organizations were hit by ransomware attacks in 2021.

Retail 130

Retail Ransomware Encryption Cybersecurity 130

CSO Magazine

SEPTEMBER 12, 2022

Cybersecurity and Infrastructure Security Agency (CISA) released its request for information (RFI) on upcoming reporting requirements that will mandate organizations report significant cybersecurity incidents within 72 hours and ransomware payments 24 hours after payments are made.

Ransomware 110

Ransomware Cybersecurity 110

CSO Magazine

AUGUST 8, 2022

While ransomware and business email compromise (BEC) are leading causes of security incidents for businesses, geopolitics and deepfakes are playing an increasing role, according to reports from two leading cybersecurity companies.

Ransomware 137

Ransomware Cybersecurity 137

CSO Magazine

SEPTEMBER 20, 2021

Ransomware is one of the fastest-growing cybersecurity attacks. One of the factors that makes these threats especially intimidating is that the costs can be far-reaching. To read this article in full, please click here

Ransomware 121

Ransomware Cybersecurity 121

CSO Magazine

FEBRUARY 28, 2023

While phishing , business email compromise (BEC) , and ransomware still rank among the most popular cyberattack techniques, a mix of new-breed attacks is gaining steam, according to a new report from cybersecurity and compliance company Proofpoint.

Ransomware 123

Ransomware Phishing Authentication Cybersecurity 123

CSO Magazine

MARCH 20, 2023

Ransomware group BianLian has shifted the main focus of its attacks away from encrypting the files of its victims to focusing more on extortion as a means to extract payments from victims, according to cybersecurity firm Redacted. The decryption tool was released in January. To read this article in full, please click here

Ransomware 98

Ransomware Encryption Cybersecurity 98

CSO Magazine

JUNE 7, 2022

A ransomware sortie on Colonial Pipeline forced its owners to shut down operations and leave half the country's East Coast in a lurch for refined oil. Since that time, efforts have aimed at making the nation's critical infrastructure more resilient and to counter the scourge of ransomware.

Energy and Utilities 130

Energy and Utilities Cybersecurity Ransomware Risk 130

CSO Magazine

JANUARY 3, 2023

LockBit , a prominent ransomware-as-a-service (RaaS) operation, has apologized for an attack on the Toronto-based Hospital for Sick Children, also known as SickKids, and offered a free decryptor.

Ransomware 125

Ransomware Cybersecurity 125

CSO Magazine

APRIL 5, 2022

I don’t know how many times I’ve heard cybersecurity professionals say something like, “Not having multi-factor authentication is a huge risk for our organization.” The real risk is the probability of a ransomware incident, for example, or the leak of personally identifiable information (PII) from a customer database.

Risk 143

Risk Cybersecurity Authentication Ransomware 143

CSO Magazine

MARCH 14, 2023

Although some cybersecurity researchers say that ransomware attacks are on the downswing as cybercriminals face declining payments, a spate of recent ransomware attacks makes it feel like the scourge is continuing at the same, or even an elevated, pace. To read this article in full, please click here

Ransomware 86

Ransomware Education Cybersecurity 86

CSO Magazine

AUGUST 17, 2022

The Institute for Security and Technology (IST) recently released a “Blueprint for Ransomware Defense.” The guide includes recommendations of defensive actions for small- and medium-sized businesses (SMBs) to protect against and respond to ransomware and other common cyberattacks. To read this article in full, please click here

Ransomware 102

Ransomware Technology Cybersecurity 102

CSO Magazine

FEBRUARY 6, 2023

A global ransomware attack has hit thousands of servers running the VMware ESxi hypervisor, with many more servers expected to be affected, according to national cybersecurity agencies and security experts around the world. To read this article in full, please click here

Ransomware 97

Ransomware Cybersecurity 97

CSO Magazine

APRIL 19, 2022

Endpoint and secure access solutions vendor Absolute Software has released a new offering to enable customers to prepare and accelerate their endpoint recovery in the face of ransomware attacks.

Software 116

Software Ransomware Cybersecurity 116

CSO Magazine

OCTOBER 7, 2021

After issuing cybersecurity requirements for pipeline companies via two directives earlier this year, the Transportation Safety Administration (TSA) will now also issue cybersecurity requirements for rail systems and airport operators.

Cybersecurity 137

Cybersecurity Ransomware 137

CSO Magazine

JULY 21, 2021

The Department of Homeland Security's (DHS) Transportation Safety Administration (TSA) yesterday announced a second security directive that requires owners and operators of TSA-designated critical pipelines to implement cybersecurity measures that help protect against malicious digital incidents.

Cybersecurity 142

Cybersecurity Ransomware 142

CSO Magazine

MARCH 10, 2023

A novel Linux version of the IceFire ransomware that exploits a vulnerability in IBM's Aspera Faspex file-sharing software has been identified by SentinelLabs, a research division of cybersecurity company Sentinel One. The exploit is for CVE-2022-47986 , a recently patched Aspera Faspex vulnerability.

Ransomware 101

Ransomware Malware Software Cybersecurity 101

CSO Magazine

NOVEMBER 24, 2021

Cybersecurity and threat analysts from Fox-IT (part of NCC Group) have shone a light on the mechanics of ransomware negotiations to help organizations improve the outcome of an attack. Concepts were presented by Pepijn Hack and Zong-Yu Wu at Black Hat Europe 2021 and expanded upon in a detailed NCC Group blog posting shortly after.

Ransomware 134

Ransomware Hacking Cybersecurity 134

CSO Magazine

DECEMBER 7, 2021

Cyber Command and the National Security Agency (NSA), confirmed what most cybersecurity specialists already knew: The U.S. military has engaged in offensive measures against ransomware groups. These actions were undertaken to stem the alarming and growing tide of ransomware attacks that have hit U.S. Nakasone, the head of U.S.

Ransomware 123

Ransomware Healthcare Education Cybersecurity 123

CSO Magazine

MARCH 8, 2021

But stupid also works: Last month in Florida, a water treatment plant’s cybersecurity was so lax, anyone could have been behind a clumsy attempt to poison the local water supply. Meanwhile, miscreants bearing ransomware have made hospitals their favorite target; in October 2020, six US hospitals fell prey within 24 hours.

Cybersecurity 140

Cybersecurity Government Ransomware Software 140

CSO Magazine

MAY 13, 2021

Capping a dramatic week that saw major oil pipeline provider Colonial Pipeline crippled by a ransomware attack , the Biden administration released a highly anticipated, far-reaching and complex Executive Order on Improving the Nation's Cybersecurity. To read this article in full, please click here

Cybersecurity 110

Cybersecurity Government Ransomware 110

Malwarebytes

NOVEMBER 8, 2021

Celebrity jewelry house Graff falls victim to ransomware Lessons from a real-life ransomware attack Is Apple’s Safari browser the last, best hope for web privacy? US offer $10m bounty for ransomware kingpins. Other cybersecurity news. Other cybersecurity news. Source: CSO Online). What is Twitch ?

CSO 99

CSO Phishing Scams Ransomware 99

CSO Magazine

OCTOBER 24, 2022

Most cybersecurity teams grapple with similar issues, from defending against the ever-changing threat landscape to finding time for training and upskilling opportunities. If the first half of 2022 was any indication, security teams are in for an interesting ride as we look ahead. To read this article in full, please click here

Cybersecurity 131

Cybersecurity Ransomware 131

The Security Ledger

JULY 11, 2021

Poor cyber literacy is at the root of many of the cybersecurity problems plaguing the U.S. economy, according to Dr. Alissa Abdullah, Deputy CSO at MasterCard. The post At Pride Summit: A Warning On Cyber Literacy appeared first on The Security Ledger with Paul F.

CSO 52

CSO Cyber Risk Ransomware Risk 52

CSO Magazine

JULY 8, 2022

A cybersecurity advisory about the ransomware known as Maui has been issued by the FBI, CISA and U.S. Treasury Department. The agencies assert that North Korean state-sponsored cyber actors have used the malware since at least May 2021 to target healthcare and public health sector organizations.

Ransomware 113

Ransomware Healthcare Malware Risk 113