The Ragnarok ransomware gang has scrubbed its public presence from the dark web, leaving behind a master decryptor key at the "leak site" it used to blackmail its victims.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
By next year, analysts expect that over 78% of firms will choose hybrid infrastructure over alternatives, due to better control over downtime, on-prem hosting and private data centers, simpler configuration, and reduction in costs.
CISA issues urgent alert as threat actors actively exploit ProxyShell vulnerabilities on unpatched Microsoft Exchange servers to execute LockFile ransomware attacks.
Why “Ransomware Insurance” Causes Healthcare Industry to Overlook Deeper, Underlying Security Issues
For the healthcare sector where 34% of all organizations were hit by ransomware last year, cyber insurance may seem like a good investment. However, this may give many organizations a false sense of security.
News has recently emerged that the US Census Bureau was compromised by a cyber attack in January 2020 which was traced back to a Citrix vulnerability that had just been publicly disclosed about a month prior.
New quantitative study exposed what some risk managers and compliance executives have suspected: Vendors are not complying with corporate insurance requirements, representing a significant risk for their clients and partners.
Last week's White House cybersecurity summit was the Biden administration's first formal public-private meeting on the subject of national security, drawing together executives from some of the biggest names in key industries.
Microsoft Azure Cosmos DB cloud databases have had their read-write keys exposed by a flaw that has been present since 2019, allowing an attacker to not just access the contents but also to change or delete them.
While many CSOs may seek solace in the eventual return to the safe confines of an office network, it is unlikely cyber criminals will cease their attacks. Rather, they will be emboldened to find more ways to take advantage of an increasing number of hybrid workplaces.
Report says merchants are overconfident about their ability to stop online shopping fraud while their customers think otherwise and blame them instead of criminals for breaches.










