Intelligence & Analytics May 30, 2023

BlackCat (ALPHV) Ransomware Levels Up for Stealth, Speed and Exfiltration

9 min read - This blog was made possible through contributions from Kat Metrick, Kevin Henson, Agnes Ramos-Beauchamp, Thanassis Diogos, Diego Matos Martins and Joseph Spero. BlackCat ransomware, which was among the top ransomware families observed by IBM Security X-Force in 2022, according to…

Data Protection May 11, 2023

Understanding the Backdoor Debate in Cybersecurity

3 min read - The debate over whether backdoor encryption should be implemented to aid law enforcement has been contentious for years. On one side of the fence, the proponents of backdoors argue that they could provide valuable intelligence and help law enforcement investigate…

Cloud Security March 15, 2023

The Importance of Modern-Day Data Security Platforms

4 min read - Data is the backbone of businesses and companies everywhere. Data can range from intellectual property to critical business plans to personal health information or even money itself. At the end of the day, businesses are looking to grow revenue, innovate,…

Incident Response February 27, 2023

How Breached Companies Become the Face of Change

4 min read - I’ve always told my kids that everyone makes mistakes. What really matters is how you handle them and that you learn from what happened. SolarWinds followed the same thinking in how it handled its 2020 breach. Not only did the…

CISO January 17, 2023

Why Quantum Computing Capabilities Are Creating Security Vulnerabilities Today

3 min read - Quantum computing capabilities are already impacting your organization. While data encryption and operational disruption have long troubled Chief Information Security Officers (CISOs), the threat posed by emerging quantum computing capabilities is far more profound and immediate. Indeed, quantum computing poses…

Data Protection September 20, 2022

Getting Lost in an Encryption Maze? Try a Key Management System

2 min read - Encryption is an essential part of any data security strategy. A key management system (KMS) can make encryption easier by enabling you to transform data to indecipherable cyphertext and control who can access it in clear text. That helps keep…

CISO January 28, 2022

What You Need to Know About Data Encryption Right Now

5 min read - You might feel like you’ve heard these imperatives a million times: “You need to encrypt your data.” “Your information isn’t secure unless you encrypt it.” “You need to eat your fruits and vegetables.” But if you’re like a lot of…

Incident Response November 1, 2021

From Thanos to Prometheus: When Ransomware Encryption Goes Wrong

7 min read - IBM Security X-Force researchers have recently reverse-engineered Prometheus ransomware samples as part of ongoing incident response operations. X-Force has found that samples that infected organizational networks featured flawed encryption. This allowed our team to develop a fast-acting decryptor and help…

News September 1, 2021

Ransomware Gangs Using Data Leak Sites to Recruit New Affiliates

2 min read - Ransomware gangs have a new technique to recruit affiliates: posting announcements on their own data leaks websites. This provides a look into today’s so-called ransomware-as-a-service (RaaS), in which people can pay to have some of the work automated for them.…

Cloud Security August 13, 2021

Ransomware Attacks: How to Protect your Data With Encryption

3 min read - Cybercriminals are making headlines using ransomware to block organizations from accessing their own critical business data to extort ransoms. In 2021, ransomware has become a pervasive, newsworthy topic that competes as a major national security issue. In the last year…