%term

CrowdStrike Phishing Attacks Appear in Record Time

Jul 19, 2024 By Stu Sjouwerman In KnowBe4

I have been the CEO of an anti-virus software developer. We had a special acronym for catastrophic events like this, a so-called "CEE". As in Company Extinction Event. Within hours of mass IT outages on Friday, a surge of new domains began appearing online, all sharing one common factor: the name CrowdStrike. As the company grapples with a global tech outage that has delayed flights and disrupted emergency services, opportunistic cybercriminals are quick to exploit the chaos.

Read Post

KnowBe4

Read more about CrowdStrike Phishing Attacks Appear in Record Time

7 in 10 Organizations Experienced a Business Email Compromise Attack in the Last 12 Months

Jul 18, 2024 By Stu Sjouwerman In KnowBe4

Despite ransomware getting the lion’s share of the tech pub headlines, business email compromise (BEC) attacks are alive and well… and having a material impact. New data from Arctic Wolf’s 2024 State of Cybersecurity report shows that BEC attacks – whether attempted or successful – are far more widely felt than previously thought.

Read Post

KnowBe4

Read more about 7 in 10 Organizations Experienced a Business Email Compromise Attack in the Last 12 Months

Change Healthcare Ransomware Attack May Cost Nearly $2.5 Billion

Jul 18, 2024 By Stu Sjouwerman In KnowBe4

The ransomware attack against UnitedHealth Group’s Change Healthcare platform is expected to cost the company up to $2.45 billion, more than a billion dollars more than was previously estimated, Cybersecurity Dive reports. The incident has already cost the firm nearly $2 billion.

Read Post

KnowBe4

Read more about Change Healthcare Ransomware Attack May Cost Nearly $2.5 Billion

Malvertising Campaign Impersonates Microsoft Teams

Jul 17, 2024 By Stu Sjouwerman In KnowBe4

Researchers at Malwarebytes warn that a malvertising campaign is targeting Mac users with phony Microsoft Teams ads. The ads are meant to trick users into installing Atomic Stealer, a commodity strain of malware designed to steal information from macOS systems.

Read Post

KnowBe4

Read more about Malvertising Campaign Impersonates Microsoft Teams

New Ransomware Threat Group Calls Attack Victims to Ensure Payments

Jul 17, 2024 By Stu Sjouwerman In KnowBe4

Analysis of new ransomware group Volcano Demon provides a detailed look into how and why calling victims ups the chances of ransomware payment. Security researchers at Halcyon have uncovered a new ransomware threat group that initially follows traditional methods – harvesting admin credentials, data exfiltrated to a C2 server, logs cleared and data was encrypted using LukaLocker. However, Volcano Demon attacks take a different direction in the extortion phase.

Read Post

KnowBe4

Read more about New Ransomware Threat Group Calls Attack Victims to Ensure Payments

Reveal Your Network's Hidden Weaknesses with KnowBe4's BreachSim Data Exfiltration Simulator

Jul 17, 2024 By KnowBe4 In KnowBe4

As cyber threats evolve, the target has become crystal clear: your data. A staggering 90% of ransomware attacks now include a data exfiltration component. With this in mind, KnowBe4 has introduced a robust free tool, BreachSim, to identify your network's vulnerabilities and shore up your cyber defenses. Financial losses, reputation damage, intellectual property theft, regulatory repercussions and operational disruptions are just a few of the harsh consequences of data exfiltration assaults. KnowBe4 BreachSim can help you nip these risks in the bud.

View Video

KnowBe4

Read more about Reveal Your Network's Hidden Weaknesses with KnowBe4's BreachSim Data Exfiltration Simulator

SEC Fines Publicly Traded Company $2.125 Million For Negligence Before, During, and After a Ransomware Attack

Jul 16, 2024 By Stu Sjouwerman In KnowBe4

According to the filing, the organization in question failed to devise controls to adequately detect, respond to, and disclose an attack that included data exfiltration and service disruption. Back in 2021, R.R. Donnelley & Sons Co.

Read Post

KnowBe4

Read more about SEC Fines Publicly Traded Company $2.125 Million For Negligence Before, During, and After a Ransomware Attack

Espionage-Intent Threat Groups Are Now Using Ransomware as a Diversion Tactic in Cyberattacks

Jul 16, 2024 By Stu Sjouwerman In KnowBe4

A new report focused on cyber espionage actors targeting government and critical infrastructure sectors highlights the strategic use of ransomware for distraction or misattribution. It was inevitable: a threat group using a secondary attack type to cover their tracks – whether those “tracks” are the groups true intent, who’s responsible – or to simply make some additional money after they’re done with the initial attack.

Read Post

KnowBe4

Read more about Espionage-Intent Threat Groups Are Now Using Ransomware as a Diversion Tactic in Cyberattacks

Phishing Continues to Be the Primary Entry to Ransomware Attacks

Jul 15, 2024 By Stu Sjouwerman In KnowBe4

Phishing remains a top initial access vector for ransomware actors, according to researchers at Cisco Talos. The threat actors often use phishing to steal legitimate credentials so they can use employee accounts without raising suspicion.

Read Post

KnowBe4

Read more about Phishing Continues to Be the Primary Entry to Ransomware Attacks

From Reactive to Proactive: Cyber Insurance is Driving Optimal Security Investments for Organizations

Jul 15, 2024 By Stu Sjouwerman In KnowBe4

New data shows that only 3 percent of organizations are solely relying on their current cyber defenses when adding on cyber insurance, indicating that organizations are beginning to understand the true value and place of a cyber insurance policy. For the last few years, it felt like organizations were seeing cyber insurance like they do their car insurance; have an “accident” and let the policy cover it.

Read Post

KnowBe4

Read more about From Reactive to Proactive: Cyber Insurance is Driving Optimal Security Investments for Organizations

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

CrowdStrike Phishing Attacks Appear in Record Time

7 in 10 Organizations Experienced a Business Email Compromise Attack in the Last 12 Months

Change Healthcare Ransomware Attack May Cost Nearly $2.5 Billion

Malvertising Campaign Impersonates Microsoft Teams

New Ransomware Threat Group Calls Attack Victims to Ensure Payments

Reveal Your Network's Hidden Weaknesses with KnowBe4's BreachSim Data Exfiltration Simulator

SEC Fines Publicly Traded Company $2.125 Million For Negligence Before, During, and After a Ransomware Attack

Espionage-Intent Threat Groups Are Now Using Ransomware as a Diversion Tactic in Cyberattacks

Phishing Continues to Be the Primary Entry to Ransomware Attacks

From Reactive to Proactive: Cyber Insurance is Driving Optimal Security Investments for Organizations

Monthly Archive

Follow Us