Welcome to ISMG's Ransomware Resource Center!

Ransomware has rapidly become one of the world's most prevalent types of cybercrime. The lure for criminals is easy to see: Using highly automated and easily distributed crypto-locking malware to forcibly encrypt systems, attackers can demand bitcoin ransoms in exchange for decryption keys. Use this Ransomware Resource Center for the latest details on emerging ransomware variants, threat intelligence on attackers, plus best practices for detection, response and remediation.

Files encrypted by the Gandcrab ransomware have a ".crab" extension. (Photo: India Kirk via Flickr/CC)

Crabby Ransomware Nests in Compromised Websites

Jeremy Kirk • May 10, 2018

The Gandcrab ransomware has been a moving target. Since it was discovered in January, it quickly became one of the most widely distributed file-encrypting malware programs. Researchers with Cisco say they've now found it seeded within legitimate websites, making its spread tougher to stop.

Ransomware

Atlanta Ransomware Attack Freezes City Business

Latest

Cybercrime

Nonstop Breaches Fuel Spike in Synthetic Identity Fraud

Mathew J. Schwartz • May 18, 2018

Leading the latest edition of the ISMG Security Report: Years of massive data breaches have fueled an increase in synthetic identity fraud, in which fraudsters combine real and bogus details to create more effective fake identities. Plus, has "The Dark Overlord" hacking group finally met its match?

Anti-Malware

Texas Hospital CEOs: Cybersecurity Is No. 1 Worry

Marianne Kolbasuk McGee • May 7, 2018

At a recent meeting of hospital CEOs in Texas, the leaders said the issue that keeps them awake at night is cybersecurity, says Fernando Martinez of the Texas Hospital Association, who explains why.

Breach Preparedness

Recent Ransomware Incidents Serve Up Lessons

Marianne Kolbasuk McGee • April 26, 2018

Two recent security incidents involving ransomware attacks on vendors serve as the latest reminders of the risks business associates pose to healthcare organizations. What steps should entities take to mitigate those risks?

Artificial Intelligence & Machine Learning

Art Coviello on Fraud and the 2018 State of Security

Tom Field • April 12, 2018

Art Coviello, ex-CEO of RSA, is concerned about fraud trends and social media vulnerabilities. But he also is bullish on the opportunity for artificial intelligence and DevOps security to stop attacks before they cause harm.

Cybercrime

Why Ransomware Attacks Are a Security Wake-Up Call

Marianne Kolbasuk McGee • March 9, 2018

Recent ransomware attacks on healthcare entities have been a major security wake-up call, says Rod Piechowski, senior director of health information systems at of HIMSS, who explains what action is needed.

General Data Protection Regulation (GDPR)

Procrastinators' Guide to GDPR Compliance

Mark McGlenn • May 21, 2018

If you're paying attention, you've probably already seen a handful of GDPR-related headlines just today, let alone in the last week or month. But there are two good reasons for the deluge of GDPR discussion right now: It's incredibly important and the time to act is now.

Fraud Management & Cybercrime

A New Way to Handle Cyber Claims

Information Security Media Group • May 11, 2018

Eduard Goodman, global privacy officer of CyberScout, doesn't like the disorganized way most cyber incidents are handled now. Instead, he would like to see a more project management approach. Here are the benefits he foresees.

Cyberwarfare / Nation-state attacks

Countering Attacks on Critical Infrastructure

Nick Holland • May 9, 2018

Critical infrastructure, including electricity grids and telecommunications networks, is under attack. Optiv's Brian Wrozek discusses the challenges CISOs face in dealing with increasingly connected industrial devices.

Anti-Malware

What GDPR Means for Cybersecurity

Information Security Media Group • May 4, 2018

We all know about May 25 and the enforcement deadline for Europe's General Data Protection Regulation. But what impact will GDPR have on cybersecurity programs? Danny Rogers of Terbium Labs weighs in on the topic.

Adaptive Authentication

Fear vs. Reality: Looking Ahead

Tom Field • May 3, 2018

Despite the buzz about digital transformation, most enterprises remain overwhelmed by having to support and secure legacy technologies, says Mark Loveless of Duo Security. How can they simultaneously protect their legacy systems while securing their future?

Data 443: Putting Governance in Users' Hands

Tom Field • May 2, 2018

Jason Remillard is president of Data 443, a startup that aims to take data classification and governance out of IT's hands and give that control to the business and the end user. How does it work?

Endpoint Security

Axonius: A New Approach to Device Management

Tom Field • May 2, 2018

At a time when so many new devices are connected to enterprise networks, security leaders struggle just to inventory the devices - never mind secure them. Nathan Burke, CMO of Axonius, a new device management vendor, discusses the niche Axonius fills.