Incident Response May 1, 2023

How Morris Worm command and control changed cybersecurity

4 min read - A successful cyberattack requires more than just gaining entry into a victim’s network. To truly reap the rewards, attackers must maintain a persistent presence within the system. After establishing communication with other compromised network devices, actors can stealthily extract valuable…

Risk Management November 28, 2022

Worms of wisdom: How WannaCry shapes cybersecurity today

4 min read - WannaCry wasn’t a particularly complex or innovative ransomware attack. What made it unique, however, was its rapid spread. Using the EternalBlue exploit, malware could quickly move from device to device, leveraging a flaw in the Microsoft Windows Server Message Block…

Malware April 13, 2022

Where Everything Old is New Again: Operational Technology and Ghosts of Malware Past

7 min read - This post was written with contributions from IBM Security X-Force’s Michael Worley. Operational technology (OT) — the networks that control industrial control system processes — face a more complex challenge than their IT counterparts when it comes to updating operating…

Malware September 1, 2021

What Has Changed Since the 2017 WannaCry Ransomware Attack?

3 min read - The cybersecurity world is still feeling the effects of the 2017 WannaCry ransomware attack today. While the majority of the damage occurred in the weeks after May 12, 2017, WannaCry ransomware attacks actually increased 53% from January 2021 to March…

Malware June 2, 2021

Cyber Extortion: What You Need to Know in 2021

4 min read - Over the years, the term ransomware has taken on a new meaning for many businesses and local governments. This used to be considered a relatively new and emerging form of malware. Now, attackers have transformed it into a sophisticated and aggressive form…

Intelligence & Analytics October 30, 2020

WannaCry: How the Widespread Ransomware Changed Cybersecurity

14 min read - If I had polled cybersecurity experts on their way to work on May 12, 2017, most of them would have said they knew a major cybersecurity event loomed. Yet, on that day no one expected that they were walking into…

May 18, 2020

Weekly Security News Roundup: WannaCry Dominated Ransomware Detections in Q1 2020

3 min read - Security researchers revealed that WannaCry dominated their ransomware detections in the first quarter of 2020. Read on to learn what else happened last week in security news.

October 3, 2019

Lemon_Duck PowerShell Malware Targets Windows Users With Cryptojacking Campaign

2 min read - A PowerShell-based cryptojacking malware campaign called Lemon_Duck is repeatedly upgrading its attack scripts using open-source repositories, security researchers warn.

August 21, 2019

MyKings Botnet Variant May Have Gone Unnoticed for 2 Years Before Discovery

2 min read - A variant of the MyKings botnet that may have been hidden for the last two years could prove even more difficult to remove from infected machines, security researchers warn.

May 21, 2019

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

2 min read - Two years since the WannaCry attacks wreaked havoc around the world, researchers say hundreds of thousands of people are being targeted with the EternalBlue exploit on which it was based.