%term

The Dangers of Double and Triple Extortion in Ransomware Attacks

Apr 29, 2025 By Sule Tatar In Arctic Wolf

In the summer of 2024, a Russian ransomware gang launched an attack on a UK pathology services provider. However, the group didn’t just encrypt the organization’s data and demand a ransom. It exfiltrated data from more than 300 million patient interactions with the National Health Service (NHS), and when the victim organization refused to pay the hefty ransom, the group released all the stolen data on the dark web.

Read Post

Arctic Wolf

Read more about The Dangers of Double and Triple Extortion in Ransomware Attacks

Top Endpoint Protection Tools for MSPs to Stop Ransomware in 2025

Apr 29, 2025 By Evangelin Sebattini In BDRSuite

For Managed Service Providers (MSPs), ransomware attacks aren’t just a security issue, they’re a business-killing risk. In 2020, the average cost of downtime caused by ransomware was $274,200 — nearly double what it was the year before. Now, imagine you’re an MSP responsible for multiple clients, each relying on your service for their critical operations.

Read Post

BDRSuite

Read more about Top Endpoint Protection Tools for MSPs to Stop Ransomware in 2025

The Rapid Evolution of CLEARFAKE Delivery

Apr 29, 2025 By Kroll In Kroll

Kroll continues to observe widespread attempted initial access through CLEARFAKE via fake CAPTCHA pop-ups across a wide range of industry sectors. As detailed in previous Kroll reporting, CLEARFAKE is a malicious in-browser JavaScript framework deployed on compromised webpages as part of drive-by compromise campaigns. Although CLEARFAKE continues to show the same themes surrounding its use alongside fake CAPTCHA pop-ups, there are also a wide range of nuances that have appeared in the past few months.

Read Post

Kroll

Read more about The Rapid Evolution of CLEARFAKE Delivery

The Growing Threat of Ransomware to the Manufacturing Sector

Apr 29, 2025 By Kirsten Doyle In Tripwire

Ransomware has evolved from a distant “I hope it doesn’t happen to us” threat to an insidious, worldwide crisis. Among the sectors most affected is manufacturing, which has found itself more and more in attackers’ crosshairs. Manufacturing has long viewed itself as immune to digital crime, but ransomware attackers have belied this belief.

Read Post

Tripwire

Read more about The Growing Threat of Ransomware to the Manufacturing Sector

Ransomware Attacks on Critical Infrastructure Surge, Reports FBI

Apr 29, 2025 By Graham Cluley In Tripwire

The FBI is set to report that ransomware was the most pervasive cybersecurity threat to US critical infrastructure during the year of 2024. As Reuters reports, complaints of ransomware attacks against critical sectors have jumped 9% over the previous year.

Read Post

Tripwire

Read more about Ransomware Attacks on Critical Infrastructure Surge, Reports FBI

Raising the Security Bar: Essential Measures to Combat Emerging Cyber Threats

Apr 29, 2025 By SecuritySenses In SecuritySenses

Cyber threats are evolving all the time, and the pace of advancement is increasing. From malware and ransomware attacks to increasingly sophisticated phishing techniques and zero-day exploits, threat actors are constantly working to find new ways to breach our defenses, so we need to take proactive steps to raise security standards and keep our organizations on the front foot in the fight against cybercrime. In this piece, we'll discuss some essential measures you can take to do this, highlighting best practices and security technologies that can enable you to build a more threat-resilient organization.

Read Post

SecuritySenses

Read more about Raising the Security Bar: Essential Measures to Combat Emerging Cyber Threats

Ep 7: Everything Everywhere All At Once

Apr 28, 2025 By Rubrik In Rubrik

The General Manager of an electric and water utility in Littleton, Mass. gets a surprise call from the FBI. At first he suspects the caller is a spammer, but soon he learns the agent is very real. Chinese hackers are lurking deep in his utility’s systems. And his is not the only one. Hundreds of other power, water and pipeline operations across the United States are getting hit. These targets have little to no intelligence value at all. But their potential for sabotage? Enormous.

View Video

Rubrik

Read more about Ep 7: Everything Everywhere All At Once

Essential Strategies for HIPAA Compliance and Ransomware Resilience

Apr 28, 2025 By Trustwave In Trustwave

Neglecting regulatory compliance obligations, whether intentional or not, is not just a procedural error but a direct invitation for significant financial penalties, operational disruption, and, in the case of a healthcare organization, creating a potentially life-threatening situation. These consequences were recently illustrated by the US Department of Health and Human Services (HHS), Office for Civil Rights (OCR).

Read Post

Trustwave

Read more about Essential Strategies for HIPAA Compliance and Ransomware Resilience

Social Engineering Campaign Abuses Zoom to Install Malware

Apr 25, 2025 By Stu Sjouwerman In KnowBe4

A social engineering campaign is abusing Zoom's remote control feature to take control of victims’ computers and install malware, according to researchers at security firm Trail of Bits. The operation targeted Trail of Bits’ CEO, who recognized it as malicious and didn’t fall for the attack. The researchers have attributed the campaign to the ELUSIVE COMET threat actor.

Read Post

KnowBe4

Read more about Social Engineering Campaign Abuses Zoom to Install Malware

FBI 2024 IC3 Report: Phishing Soars, Ransomware Batters Critical Infrastructure as Cyber Losses Climb

Apr 25, 2025 By Trustwave In Trustwave

The Federal Bureau of Investigation’s (FBI) Internet Crime Complaint Center issued the 25th edition of its annual report this month, again noting a jump in complaints and losses from phishing, ransomware, and data breaches among the leading cyber threats. Overall, the FBI’s 2024 IC3 reported $16.6 billion in losses, up from $12.5 billion in 2023, on 859,532 complaints received. This figure was down slightly from the 880,418 complaints received in 2023.

Read Post