InfoSec, Ransomware and Technology - Cyber Security Informer

Demand, CyberInsurance, and Automation/AI Are the Future of InfoSec

Daniel Miessler

NOVEMBER 6, 2020

2021-2030) A Surge in Demand for InfoSec people will result in many more professionals being trained and placed within companies, likely using more of a trade/certification model than a 4-year university model. That’s the distant future of InfoSec, with humans playing less and less a part in the equation as time goes on.

InfoSec

InfoSec Insurance Artificial Intelligence Cybersecurity

State of Cybersecurity in Canada 2025: Key Insights for InfoSec Leaders

SecureWorld News

FEBRUARY 5, 2025

It is also a celebration of Canadian thought leadership on very important business and technology topics that are directly impacting Canadians quality of life as well as their pocketbooks." Ransomware is no longer an "if" but a "when," making proactive defense strategies essential. Key findings: the cyber threat landscape in 2025 1.

InfoSec

InfoSec Energy and Utilities Cybersecurity Education

Operation Fortify: A US Ransomware Plan

Daniel Miessler

OCTOBER 4, 2020

The US is currently being ravaged by ransomware. Google News Results for US Ransomware. These soft targets not only lack the defensive technology to protect themselves, they don’t even know what that tech is. Ransomware Basics (Common Features, Common Variants, etc.), So I have a proposal: Operation Fortify.

Ransomware

Ransomware Small Business Government InfoSec

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

INC RANSOM ransomware gang claims to have breached Xerox Corp

Security Affairs

DECEMBER 30, 2023

The INC RANSOM ransomware group claims to have hacked the American multinational corporation Xerox Corp. The INC RANSOM ransomware group claims responsibility for hacking the American multinational corporation Xerox Corp and threatens to disclose the alleged stolen data. Xerox Corp provides document management solutions worldwide.

Ransomware

Ransomware InfoSec Data breaches Hacking

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

The Rhysida ransomware group claimed to have hacked the Chinese state-owned energy conglomerate China Energy Engineering Corporation. The Rhysida ransomware gang added the China Energy Engineering Corporation to the list of victims on its Tor leak site. The Rhysida ransomware operators plan to sell the stolen data to a single buyer.

Ransomware

Ransomware Hacking Engineering Manufacturing

Lockbit ransomware gang claims to have stolen data from Boeing

Security Affairs

OCTOBER 27, 2023

The Lockbit ransomware gang claims to have hacked the aerospace manufacturer and defense contractor Boeing and threatened to leak the stolen data. The Lockbit ransomware group today added Boeing to the list of victims on its Tor leak site. ransomware ??????: In 2022, Boeing recorded $66.61 In 2022, Boeing recorded $66.61

Ransomware

Ransomware Manufacturing InfoSec Hacking

Invest in These 3 Key Security Technologies to Fight Ransomware

Threatpost

NOVEMBER 11, 2021

Ransomware volumes are up 1000%. Aamir Lakhani, cybersecurity researcher and practitioner at FortiGuard Labs?, discusses secure email, network segmentation and sandboxing for defense.

Ransomware

Ransomware Technology Cybersecurity InfoSec

Cyber Playbook: Information Technology vs Operational Technology – How to Leverage IT to Secure Your OT Systems

Herjavec Group

JANUARY 31, 2022

Information Technology (IT) primarily refers to hardware, software, and communications technologies like networking equipment and modems that are used to store, recover, transmit, manipulate, and protect data. . Operational technology has seen innovations that allowed it to become safer, more efficient, and more reliable.

Technology

Technology Cybersecurity InfoSec Software

Friday Five 4/1

Digital Guardian

APRIL 1, 2022

Hacked satellites, how technology enables data protection, and the fastest ransomware - catch up on the infosec news of the week with the Friday Five!

InfoSec

InfoSec Ransomware Technology Hacking

Play Ransomware Gang Behind Oakland Cyberattack

SecureWorld News

MARCH 3, 2023

The City of Oakland recently experienced a ransomware attack that disrupted services and caused the city to declare a state of emergency, displaying the real-world consequences that cyberattacks can have. The hackers behind Play Ransomware claim to have access to a "master key" that can decrypt all files affected by their malware.

Ransomware

Ransomware Encryption InfoSec Manufacturing

Spotlight: When Ransomware Comes Calling

The Security Ledger

SEPTEMBER 30, 2021

With the attention given to the threats posed by ransomware, why do organizations still fall victim to these attacks? Max Henderson, the Manager of Incident Response at Pondurance joins us to talk about what companies get wrong in responding to ransomware and other threats. So what should companies worried about ransomware do?

Ransomware

Ransomware InfoSec Retail Education

CSTA Turns 400 – Proof That Technology Integrations Is Exactly What You Are Looking For

Cisco Security

AUGUST 26, 2021

We constantly see new threats, and threat vectors, come and go; which puts a tremendous strain on the InfoSec teams that have to protect organizations and businesses from these threats. This year we saw the reemergence of old vectors: from ransomware & trojans, to supply chain attacks. New Cisco Cloud Security Integrations.

Technology

Technology Firewall VPN Authentication

CISA Order Highlights Persistent Risk at Network Edge

Krebs on Security

JUNE 15, 2023

CISA’s mandate follows a slew of recent attacks wherein attackers exploited zero-day flaws in popular networking products to conduct ransomware and cyber espionage attacks on victim organizations. “COVID-19 extended the life of these companies and technologies, and that’s unfortunate.”

Risk

Risk VPN Internet Internet

Cyber Playbook: Ransomware and the OT Environment

Herjavec Group

APRIL 29, 2022

Ransomware and the OT Environment: Am I Safe? Ransomware is everywhere. Though the ransomware never made it into the ICS network, the system was taken offline as a preventative measure causing major disruptions to fuel supplies on the East Coast. Contributed By: Chris Thomas, Senior Security Consultant. It’s all over the news.

Ransomware

Ransomware InfoSec Risk Cybersecurity

Why Predator is the ultimate CISO movie

Javvad Malik

OCTOBER 29, 2020

I was reminded of this by Phil Cracknell who posted on linkedin that in his opinion the Kevin Costner, Whitney Houston classic, Bodyguard was the best infosec movie. You don’t need flashy tools and the latest in AI technology to defeat a superior enemy. Don’t believe me? Well read on. But that wasn’t all.

CISO

CISO InfoSec Banking Ransomware

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

I seem to be doing most of that activity now on Mastodon , which appears to have absorbed most of the infosec refugees from Twitter, and in any case is proving to be a far more useful, civil and constructive place to post such things. For a variety of reasons, I will no longer be sharing these updates on Twitter.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

Security Boulevard

FEBRUARY 14, 2025

And get the latest on ransomware trends and on cybercrime legislation and prevention! Cybersecurity News) How to mitigate buffer overflow vulnerabilities (Infosec Institute) How to prevent buffer overflow attacks (TechTarget) VIDEOS What is a Buffer Overflow Attack? Dive into six things that are top of mind for the week ending Feb.

Banking

Banking Cybercrime Cybersecurity Ransomware

Missouri Governor and F12 Hacking, Global Ransomware Meeting, Fake Government Websites

Security Boulevard

OCTOBER 24, 2021

Details on the F12 “hacking” incident of the Missouri state education website and the foolish response from the Missouri governor, Over 30 countries (except China and Russia) meet to fight ransomware globally, and the FBI’s warning about fake unemployment benefit websites. ** Links mentioned on the show ** Gov.

Government

Government Hacking Ransomware Education

Top 10 Cybersecurity Best Practices to Combat Ransomware

Threatpost

NOVEMBER 12, 2021

Immutable storage and more: Sonya Duffin, data protection expert at Veritas Technologies, offers the Top 10 steps for building a multi-layer resilience profile.

Cybersecurity

Cybersecurity Ransomware Technology InfoSec

10 Funny Tweets to Promote #CybersecurityAwareness

SecureWorld News

OCTOBER 6, 2021

From ransomware to the social media power outage, our news feeds are already full to the brim and this is just the beginning of October. cybersecurity #technology #security #cyber #cybercrime #informationsecurity #cybersecurityawareness #cybersecuritybusiness pic.twitter.com/T2wR194qoz — CYBER RANGES (@cyberranges). October 5, 2021.

InfoSec

InfoSec Passwords Cybersecurity Media

Kaseya Ransomware Attack, PrintNightmare Zero-day, Kaspersky Password Manager Vulnerability

Security Boulevard

JULY 11, 2021

The post Kaseya Ransomware Attack, PrintNightmare Zero-day, Kaspersky Password Manager Vulnerability appeared first on The Shared Security Show. The post Kaseya Ransomware Attack, PrintNightmare Zero-day, Kaspersky Password Manager Vulnerability appeared first on Security Boulevard.

Password Management

Password Management Passwords Ransomware InfoSec

FBI Email System Compromised, Ransomware Negotiation, Privacy Crushing Gifts

Security Boulevard

NOVEMBER 21, 2021

The post FBI Email System Compromised, Ransomware Negotiation, Privacy Crushing Gifts appeared first on The Shared Security Show. The post FBI Email System Compromised, Ransomware Negotiation, Privacy Crushing Gifts appeared first on The Shared Security Show.

Ransomware

Ransomware Cyber Attacks InfoSec Technology

CISA releases Insider Risk Mitigation Self-Assessment Tool

Security Affairs

SEPTEMBER 30, 2021

If you don’t, our Insider Threat Self-Assessment Tool will help gauge your vulnerability to an insider threat incident: [link] #InfrastructureResilience #InfoSec pic.twitter.com/gob4hxAP27 — CISA Infrastructure Security (@CISAInfraSec) September 28, 2021. Do you have a plan to handle an insider threat?

Risk

Risk InfoSec Ransomware Technology

Top 10 Cybersecurity Memes

SecureWorld News

APRIL 6, 2022

With ransomware running rampant, cybercriminals operating complex schemes, and nation-state threat actors like Russia becoming more aggressive, it can sometimes feel like there is no end in sight. Here are some of the most amusing ones InfoSec memes we've seen. Working in cybersecurity can be awfully stressful these days.

Cybersecurity

Cybersecurity InfoSec CISO Data breaches

EARN IT Act is Back, Romance Scams, Like and Subscribe Ransomware

Security Boulevard

FEBRUARY 13, 2022

The EARN IT Act is back for a second time which would pave the way for a new massive government surveillance system in the US, romance scams are on the rise so don’t fall for love in all the wrong places, and details about a new ransomware attack that wants you to like and subscribe, […].

Scams

Scams Ransomware Surveillance Government

Supply chain attacks are closing in on MSPs

Webroot

AUGUST 18, 2021

Second-stage infections were then pushed against these targets, plus some of the world’s most influential technology vendors. The infosec researcher Matt Tait, who spoke at this year’s Black Hat on the topic of supply chain attacks, called the Codecov compromise an instance of high-volume disruption based on indiscriminate targeting.

InfoSec

InfoSec Backups Software Small Business

TikTok Denies Data Breach, Los Angeles School District Ransomware Attack, Fingerprint Scanners in School Bathrooms

Security Boulevard

SEPTEMBER 12, 2022

TikTok has denied reports that it was breached by a hacking group, after it claimed they have gained access to over 2 billion user records, the Los Angeles school district, the second-largest in the US, suffered a ransomware attack, and details on how one high school in Sydney Australia installed fingerprint scanners at the entrance […].

Data breaches

Data breaches Ransomware Hacking Surveillance

Spotlight: Operationalizing MDR with Pondurance CISO Dustin Hutchison

The Security Ledger

OCTOBER 7, 2021

Related Stories Spotlight: Operationalizing MDR with Pondurance CISO Dustin Hutchinson Spotlight: When Ransomware Comes Calling Spotlight: Is There A Cure For InfoSec’s Headcount Headache? The rise of ransomware makes regular on- and off site backups of key systems and data indispensable.

CISO

CISO InfoSec Ransomware Backups

‘Turn off your heart’: Kaseya VSA ransomware hits MSPs in a vital organ

SC Magazine

JULY 3, 2021

Kaseya ransomware attacks strike at software at the center of the enterprise: the remote monitoring and management (RMM) platform. (“Server room” by torkildr is licensed under CC BY-SA 2.0 ). The scope of the ransomware outbreak leveraging Kaseya VSA remains fluid, but the number of customers impacted could be significant.

Ransomware

Ransomware Software InfoSec Media

Spotlight: Operationalizing MDR with Pondurance CISO Dustin Hutchinson

The Security Ledger

OCTOBER 7, 2021

Related Stories Spotlight: When Ransomware Comes Calling Spotlight: Is There A Cure For InfoSec’s Headcount Headache? The rise of ransomware makes regular on- and off site backups of key systems and data indispensable. . Episode 226: The Cyber Consequences Of Our Throw Away Culture.

CISO

CISO InfoSec Ransomware Backups

Lapsus$ gang claims to have hacked Microsoft source code repositories

Security Affairs

MARCH 21, 2022

On Thursday, March 10, Lapsus$ ransomware gang announced they’re starting to recruit insiders employed within major technology giants and ISPs, such companies include Microsoft, Apple, EA Games and IBM. Over the last months, the gang compromised other prominent companies such as NVIDIA , Samsung , Ubisoft , Mercado Libre, and Vodafone.

Hacking

Hacking InfoSec Telecommunications Cybercrime

Security Affairs newsletter Round 436 by Pierluigi Paganini – International edition

Security Affairs

SEPTEMBER 10, 2023

US CISA added critical Apache RocketMQ flaw to its Known Exploited Vulnerabilities catalog Ragnar Locker gang leaks data stolen from the Israel’s Mayanei Hayeshua hospital North Korea-linked threat actors target cybersecurity experts with a zero-day Zero-day in Cisco ASA and FTD is actively exploited in ransomware attacks Nation-state actors (..)

DDOS

DDOS VPN Data breaches Cybercrime

XDR: Three Reasons It Should Drive Your Security Strategy

CyberSecurity Insiders

FEBRUARY 26, 2022

Nearly 80 percent of infosec personnel who responded to the survey said that XDR should be a top security priority for their organization. Infosec teams are also facing burnout and overload from low-context alerts and false positives. But XDR offers an opportunity to reverse these trends and more.

Data breaches

Data breaches InfoSec Threat Detection Ransomware

The Rise of Data Sovereignty and a Privacy Era

SecureWorld News

JUNE 24, 2024

In addition, the risks of monetary and operational damage render it mission critical for enterprises to envision and enact the appropriate People, Process, and Technology safeguards to assure data protection and privacy. Traditionally, InfoSec lies within the IT organization, and Privacy is housed inside the Legal department.

IoT

IoT InfoSec Artificial Intelligence Risk

Episode 219: LGBTQ+Cyber – A Pride Month Conversation On Being Queer In Infosec

The Security Ledger

JUNE 30, 2021

. » Related Stories Episode 216: Signed, Sealed and Delivered: The Future of Supply Chain Security Episode 215-2: Leave the Gun, Take the McFlurry Episode 214: Darkside Down: What The Colonial Attack Means For The Future of Ransomware. Infosec is one of the most demographically lopsided industries around in terms of gender.

InfoSec

InfoSec Information Security Engineering Antivirus

2022 Cybersecurity predictions

CyberSecurity Insiders

NOVEMBER 16, 2021

In 2022, we will see 5G go from new technology to a business enabler bringing previously unimaginable use cases because of its high bandwidth and lower latency. Data from the current AT&T Cybersecurity Insights Report shows that 5G technology is being driven by the line of business and has been siloed between IT and OT organizations.

Cybersecurity

Cybersecurity Energy and Utilities Manufacturing Healthcare

Top 5 Security Trends this Summer: RSA Conference & Black Hat 2022

Webroot

JULY 25, 2022

Threat intelligence solutions using AI/ ML technologies can prevent false positives and reduce alert fatigue – helping cybersecurity professionals focus on strategic priorities instead of spending all their time reacting to security alerts and potential incidents.

Cyber Insurance

Cyber Insurance Insurance Marketing Ransomware

Content Creation, Mental Health in Cyber, The MGM Ransomware Attack

Security Boulevard

SEPTEMBER 24, 2023

The post Content Creation, Mental Health in Cyber, The MGM Ransomware Attack appeared first on Security Boulevard.

Ransomware

Ransomware Data privacy InfoSec Technology

IT threat evolution Q1 2021. Non-mobile statistics

SecureList

MAY 31, 2021

Ransomware attacks were defeated on the computers of 91,841 unique users. Ransomware programs. New additions to the ransomware arsenal. Last year, the SunCrypt and RagnarLocker ransomware groups adopted new scare tactics. 613,968,631 unique URLs were recognized as malicious by Web Anti-Virus components.

Mobile

Mobile Adware Ransomware Malware

Remember GDPR? Expect another set of cyber regulations around vulnerabilities

SC Magazine

APRIL 14, 2021

Country-level guidelines are frequently absent or insufficient, and as a result, companies must ethically defend themselves, initiate vulnerability management programs, and decide whether to pay in ransomware attacks. Since the end of 2020, we have witnessed the increasing prevalence of coercion through technology.

Government

Government Risk Information Security InfoSec

iOS 17 NameDrop Debunking, Real World QR Code Attacks, Impact of Ransomware on Hospitals

Security Boulevard

DECEMBER 10, 2023

Finally, the episode […] The post iOS 17 NameDrop Debunking, Real World QR Code Attacks, Impact of Ransomware on Hospitals appeared first on Shared Security Podcast. The post iOS 17 NameDrop Debunking, Real World QR Code Attacks, Impact of Ransomware on Hospitals appeared first on Security Boulevard.

Ransomware

Ransomware Scams Media Risk

Charting a Course to Zero Trust Maturity: 5 Steps to Securing User Access to Apps

Duo's Security Blog

OCTOBER 6, 2023

Threat actors have dramatically escalated their attacks – targeting security controls like multi-factor authentication (MFA), conducting wily social engineering attacks and extorting businesses large and small with ransomware. To achieve more resilience in this heightened risk environment, stepping up zero trust maturity is essential.

Authentication

Authentication Risk Social Engineering InfoSec

Ransomware Trends Show Lockbit Most Active, New Tactics, Healthcare Hit Hard

Security Boulevard

JUNE 8, 2022

Ransomware Trends Show Lockbit Most Active, New Tactics, Healthcare Hit Hard. LockBit replaced Conti as the most active ransomware gang and continued to evolve its operations in the first quarter, according to a report (PDF) from KELA Cybercrime Intelligence. Another notable Ransomware trend: new methods of intimidation.

Healthcare

Healthcare Ransomware Encryption Cybercrime

How much security is enough?

SecureList

JANUARY 9, 2023

A common perception in the infosec community is that there can never be too much security, but it is understood that “too much” security is expensive — and sometimes, prohibitively so — from a business perspective.

InfoSec

InfoSec CISO Information Security Ransomware

Demand, CyberInsurance, and Automation/AI Are the Future of InfoSec

State of Cybersecurity in Canada 2025: Key Insights for InfoSec Leaders

Webinars

Trending Sources

Operation Fortify: A US Ransomware Plan

Webinars

INC RANSOM ransomware gang claims to have breached Xerox Corp

Rhysida ransomware gang claimed China Energy hack

Lockbit ransomware gang claims to have stolen data from Boeing

Invest in These 3 Key Security Technologies to Fight Ransomware

Cyber Playbook: Information Technology vs Operational Technology – How to Leverage IT to Secure Your OT Systems

Friday Five 4/1

Play Ransomware Gang Behind Oakland Cyberattack

Spotlight: When Ransomware Comes Calling

CSTA Turns 400 – Proof That Technology Integrations Is Exactly What You Are Looking For

CISA Order Highlights Persistent Risk at Network Edge

Cyber Playbook: Ransomware and the OT Environment

Why Predator is the ultimate CISO movie

Happy 13th Birthday, KrebsOnSecurity!

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

Missouri Governor and F12 Hacking, Global Ransomware Meeting, Fake Government Websites

Top 10 Cybersecurity Best Practices to Combat Ransomware

10 Funny Tweets to Promote #CybersecurityAwareness

Kaseya Ransomware Attack, PrintNightmare Zero-day, Kaspersky Password Manager Vulnerability

FBI Email System Compromised, Ransomware Negotiation, Privacy Crushing Gifts

CISA releases Insider Risk Mitigation Self-Assessment Tool

Top 10 Cybersecurity Memes

EARN IT Act is Back, Romance Scams, Like and Subscribe Ransomware

Supply chain attacks are closing in on MSPs

TikTok Denies Data Breach, Los Angeles School District Ransomware Attack, Fingerprint Scanners in School Bathrooms

Spotlight: Operationalizing MDR with Pondurance CISO Dustin Hutchison

‘Turn off your heart’: Kaseya VSA ransomware hits MSPs in a vital organ

Spotlight: Operationalizing MDR with Pondurance CISO Dustin Hutchinson

Lapsus$ gang claims to have hacked Microsoft source code repositories

Security Affairs newsletter Round 436 by Pierluigi Paganini – International edition

XDR: Three Reasons It Should Drive Your Security Strategy

The Rise of Data Sovereignty and a Privacy Era

Episode 219: LGBTQ+Cyber – A Pride Month Conversation On Being Queer In Infosec

2022 Cybersecurity predictions

Top 5 Security Trends this Summer: RSA Conference & Black Hat 2022

Content Creation, Mental Health in Cyber, The MGM Ransomware Attack

IT threat evolution Q1 2021. Non-mobile statistics

Remember GDPR? Expect another set of cyber regulations around vulnerabilities

iOS 17 NameDrop Debunking, Real World QR Code Attacks, Impact of Ransomware on Hospitals

Charting a Course to Zero Trust Maturity: 5 Steps to Securing User Access to Apps

Ransomware Trends Show Lockbit Most Active, New Tactics, Healthcare Hit Hard

How much security is enough?

Stay Connected