Application Security January 25, 2023

Kronos Malware Reemerges with Increased Functionality

6 min read - The Evolution of Kronos Malware The Kronos malware is believed to have originated from the leaked source code of the Zeus malware, which was sold on the Russian underground in 2011. Kronos continued to evolve and a new variant of…

Risk Management January 12, 2023

Now You SIEM, Now You Don’t —Six Failures of Cybersecurity

4 min read - Security information and event management (SIEM) frameworks are essential for enterprises to monitor, manage and mitigate the impact of evolving cyberattacks. As the number of threats and the financial impact of breaches increase, these frameworks are even more crucial. Consider…

Endpoint January 5, 2023

3 Reasons to Make EDR Part of Your Incident Response Plan

3 min read - As threat actors grow in number, the frequency of attacks witnessed globally will continue to rise exponentially. The numerous cases headlining the news today demonstrate that no organization is immune from the risks of a breach. What is an Incident…

Risk Management January 4, 2023

A Perfect Storm: 7 Reasons Global Attacks Will Soar in 2023

4 min read - In 2023, the global annual cost of cyber crime is predicted to top $8 trillion, according to a recent Cybersecurity Ventures report. This seemingly enormous figure might still be a major underestimate. In 2021, U.S. financial institutions lost nearly $1.2…

Intelligence & Analytics December 29, 2022

The 13 Costliest Cyberattacks of 2022: Looking Back

5 min read - 2022 has shaped up to be a pricey year for victims of cyberattacks. Cyberattacks continue to target critical infrastructures such as health systems, small government agencies and educational institutions. Ransomware remains a popular attack method for large and small targets…

Risk Management December 27, 2022

The Most Prolific Ransomware Gangs of 2022

3 min read - As we look forward to 2023, we can find many ransomware lessons in looking back at 2022. The year brought us numerous attacks by many of the same gangs we’ve watched for years, as well as some newcomers. Many ransomware…

Identity & Access December 21, 2022

Beware of What Is Lurking in the Shadows of Your IT

6 min read - This post was written with contributions from Joseph Lozowski. Comprehensive incident preparedness requires building out and testing response plans that consider the possibility that threats will bypass all security protections. An example of a threat vector that can bypass security…

News December 21, 2022

4 Big Cyber Risks in 2023, and How Best to Prepare for Them

4 min read - Right now, 2023 is a blank slate. While the last few years have shown us we can never plan for all scenarios, understanding current cybersecurity challenges can help you prepare for next year. When you know what is likely on…

Intelligence & Analytics December 20, 2022

4 Most Common Cyberattack Patterns from 2022

4 min read - As 2022 comes to an end, cybersecurity teams globally are taking the opportunity to reflect on the past 12 months and draw whatever conclusions and insights they can about the threat landscape. It has been a challenging year for security…

Risk Management December 19, 2022

How Reveton Ransomware-as-a-Service Changed Cybersecurity

4 min read - In 2012, Reveton ransomware emerged. It’s considered to be the first Ransomware-as-a-Service (RaaS) operation ever. Since then, RaaS has enabled gangs with basic technical skills to launch attacks indiscriminately. Now, nearly anyone can create highly effective malware campaigns. We now…