Ransomware - Security Intelligence

A programmer tries to mitigate a ransomware attack.

news

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Many of the city of Baltimore's public services remain offline two weeks after the municipality fell victim to a ransomware attack.

May 22, 2019 | By David Bisson

news

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

Two years since the WannaCry attacks wreaked havoc around the world, researchers say hundreds of thousands of people are being targeted with the EternalBlue exploit on which it was based.

May 21, 2019 | By Shane Schick

news

Government agent tracking Ryuk ransomware infections

news

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

The Federal Bureau of Investigation (FBI) has determined that more than 100 U.S. businesses suffered Ryuk ransomware infections between August 2018 and mid-May 2019.

May 20, 2019 | By David Bisson

news

A man researches Dharma ransomware in an office.

news

Detections of Dharma Ransomware Rise 148 Percent Between February and April 2019

A 13-year-old security threat known as Dharma ransomware is spreading through a variety of distribution methods, leading to a 148 percent increase in detections over a two-month period.

May 20, 2019 | By Shane Schick

news

news

Retefe Banking Trojan Returns With Smoke Loader as Its Intermediate Loader

The Retefe banking Trojan has resumed its activity with a new series of attack campaigns that leverage Smoke Loader as an intermediate loader.

May 7, 2019 | By David Bisson

news

Healthcare professionals using a digital tablet: cybersecurity in healthcare

article

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Is providing effective cybersecurity for the healthcare sector an IT problem or a wider-scope issue? The short answer is that it's both.

May 6, 2019 | By Jason Yakencheck

article

Woman using a tablet connected to her laptop: emotet

news

Latest Emotet Variant Wielding Connected Devices as First-Layer C&C Servers

A new variant of the Emotet banking malware is using compromised connected devices as first-layer command-and-control (C&C) servers.

April 29, 2019 | By David Bisson

news

Professional working on a laptop: DLL CryptoMix

news

New DLL CryptoMix Ransomware Reportedly Using Remote Desktop Services for Installation

Security researchers discovered that a new DLL CryptoMix ransomware variant is reportedly using Windows Remote Desktop Services (RDS) to install itself on unsuspecting users' machines.

April 23, 2019 | By David Bisson

news

Engineer at a manufacturing company working on a computer: BitPaymer

news

Attackers Compromise Admin Account to Infect Manufacturing Company With BitPaymer Ransomware

Threat actors compromised an account with administrator privileges to infect a manufacturing company with BitPaymer ransomware.

April 18, 2019 | By David Bisson

news

Man working on a laptop infected with cryptomining malware

news

Attackers Use EternalBlue and PowerShell Scripts to Spread Cryptomining Malware Across Asia

A cryptomining malware campaign originally discovered in January is now using the EternalBlue exploit to target users in Asia, according to security researchers.

April 15, 2019 | By Shane Schick

news

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

Phishing Campaign Delivers Multi-Feature, Open-Source Babylon RAT

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation

The Decline of Hacktivism: Attacks Drop 95 Percent Since 2015

Published Exploits for Accessing SAP Systems Put Security Teams on Alert

Penetration Testing Versus Red Teaming: Clearing the Confusion

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Podcast: ‘You Can Never Have Too Much Encryption’

Podcast: Automating Cyber Resilience Best Practices With Dr. Larry Ponemon

Webinar: Guardium Tech Talk: An Integrated Approach to Data Risk Management

Webinar: The Debrief: Using Tools and Methods From the Intelligence Community to Stop Threats to Your Organization

Webinar: Operational Technology Security in the Age of Digital Transformation

Webinar: Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on the Cyber Resilient Organization

Tag: Ransomware

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

Detections of Dharma Ransomware Rise 148 Percent Between February and April 2019

Retefe Banking Trojan Returns With Smoke Loader as Its Intermediate Loader

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Latest Emotet Variant Wielding Connected Devices as First-Layer C&C Servers

New DLL CryptoMix Ransomware Reportedly Using Remote Desktop Services for Installation

Attackers Compromise Admin Account to Infect Manufacturing Company With BitPaymer Ransomware

Attackers Use EternalBlue and PowerShell Scripts to Spread Cryptomining Malware Across Asia