Risk Management November 28, 2022

Worms of Wisdom: How WannaCry Shapes Cybersecurity Today

4 min read - WannaCry wasn’t a particularly complex or innovative ransomware attack. What made it unique, however, was its rapid spread. Using the EternalBlue exploit, malware could quickly move from device to device, leveraging a flaw in the Microsoft Windows Server Message Block…

Intelligence & Analytics November 22, 2022

RansomExx Upgrades to Rust

4 min read - IBM Security X-Force Threat Researchers have discovered a new variant of the RansomExx ransomware that has been rewritten in the Rust programming language, joining a growing trend of ransomware developers switching to the language. Malware written in Rust often benefits…

Risk Management November 22, 2022

Why Operational Technology Security Cannot Be Avoided

8 min read - Operational technology (OT) includes any hardware and software that directly monitors and controls industrial equipment and all its assets, processes and events to detect or initiate a change. Yet despite occupying a critical role in a large number of essential…

News November 16, 2022

Costa Rica State of Emergency Declared After Ransomware Attacks

2 min read - In late April, after weeks of major ransomware attacks, Costa Rica declared a state of emergency. Newly-elected President Rodrigo Chaves took this measure, usually reserved to deal with natural disasters, to free up the government to react more decisively to…

Risk Management November 14, 2022

How the DNSChanger Shutdown Changed Cybersecurity

3 min read - On the morning of July 9, 2012, the world braced for an “internet doomsday”: a full-scale crash of the global internet. Except it didn’t happen. And that non-event represented the culmination of a long and successful coordinated action taken between…

News November 9, 2022

Ransomware-as-a-Service Transforms Gangs Into Businesses

3 min read - Malware-as-a-Service is getting easier and easier to access, according to a recent threat report. Self-named the ‘Eternity Project’, this cyber threat group offers services from a Tor website and on their Telegram channel. They sell a wide variety of malware…

Mobile Security November 7, 2022

How the Mac OS X Trojan Flashback Changed Cybersecurity

4 min read - Not so long ago, the Mac was thought to be impervious to viruses. In fact, Apple once stated on its website that “it doesn’t get PC viruses”. But that was before the Mac OS X Trojan Flashback malware appeared in…

Application Security September 22, 2022

Does Follina Mean It’s Time to Abandon Microsoft Office?

4 min read - As a freelance writer, I spend most of my day working in Microsoft Word. Then, I send drafts to clients and companies across the globe. So, news of the newly discovered Microsoft Office vulnerability made me concerned about the possibility…

Intelligence & Analytics September 1, 2022

Raspberry Robin and Dridex: Two Birds of a Feather

8 min read - IBM Security Managed Detection and Response (MDR) observations coupled with IBM Security X-Force malware research sheds additional light on the mysterious objectives of the operators behind the Raspberry Robin worm. Based on a comparative analysis between a downloaded Raspberry Robin…

Government August 29, 2022

How Cybersecurity Policy Has Changed Since the SolarWinds Attack

3 min read - Major cyberattacks since 2019 jolted the U.S. government and software industry into action. The succeeding years have seen executive orders, new funding, two summits and a newfound resolve. Because of those attacks, the federal government aims to fix the open-source…