Welcome to ISMG's Ransomware Resource Center!

Ransomware has rapidly become one of the world's most prevalent types of cybercrime. The lure for criminals is easy to see: Using highly automated and easily distributed crypto-locking malware to forcibly encrypt systems, attackers can demand bitcoin ransoms in exchange for decryption keys. Use this Ransomware Resource Center for the latest details on emerging ransomware variants, threat intelligence on attackers, plus best practices for detection, response and remediation.

Vendor's Ransomware Attack Hits Over 600 Healthcare Clients

Marianne Kolbasuk McGee • July 5, 2022

A ransomware attack on an accounts receivables management firm has affected hundreds of healthcare clients - including dental practices, physician groups and hospitals, resulting in one of the largest health data breaches involving a vendor so far this year.

Fraud Management & Cybercrime

Conti Ransomware Group Explores Post-Encryption Future

Latest

Cloud Security

RSA Conference 2022 Compendium: 150+ Interviews and More

• July 5, 2022

Welcome to ISMG's compendium of RSA Conference 2022. The 31st annual conference covered a wide range of topics including cybercrime, cyberwarfare, zero trust, supply chain risk, ransomware, OT security, cyber insurance and jobs. Access 150+ interviews with the top speakers and influencers.

Cryptocurrency Fraud

North Korea Behind $100M Harmony Theft, Say Researchers

David Perera • June 30, 2022

Cryptocurrency experts are fingering North Korea as likely responsible for the cryptocurrency theft of $100 million from the Harmony Horizon bridge. North Korea fuels its nuclear weapons program with stolen cryptocurrency used to dodge international sanctions that prevent ready access to cash.

Biometrics

Token Snags Ex-OneSpan Revenue Leader John Gunn as New CEO

Michael Novinson • June 30, 2022

Token selected former OneSpan CRO John Gunn as CEO to scale the organization and prepare its wearable authentication ring for large-scale production. Gunn is tasked with sourcing the critical components needed to manufacture the ring and building a base of paying clients for the biometric tool.

Cybercrime

Ransomware Groups Pursue Fresh Monetization Strategies

Mathew J. Schwartz • June 29, 2022

Ransomware-wielding criminals constantly refine their behavior and tactics to maximize the chance of a payday, and recently they have been implementing fresh strategies for monetizing stolen data, says Steve Rivers at threat intelligence firm Kela.

RSA Conference

The Future of Corporate Network Security on the Internet

Anna Delaney • June 29, 2022

The emergence of remote working, the cloud, and digital transformation initiatives are prompting companies to look toward replacing traditional on-premises firewalls, say Perimeter 81 co-founder and CEO Amit Bareket and CMO Gily Netzer. They discuss the future of securing hybrid work environments.

Business Continuity Management / Disaster Recovery

Mitigating the Impact of Ransomware With Data Science

Anna Delaney • June 27, 2022

Unlocking the data generated by ransomware attacks is helping organizations better understand the risks, adopt defensive technologies and prepare for future attacks, says Wade Baker, partner at Cyentia Institute. He discusses new data on how quickly organizations are remediating vulnerabilities.

Network Detection & Response

IronNet Lays Off 17% of Staff 10 Months After Going Public

Michael Novinson • June 27, 2022

IronNet is laying off 17% of its employees in a cost-cutting effort just 10 months after going public by merging with a special purpose acquisition company. The 55 layoffs will occur by the end of June and the company will spend the $1 million allocated for severance and other termination benefits.

3rd Party Risk Management

How Ransomware Has Changed the Nature of Risk

Anna Delaney • June 23, 2022

Ransomware has changed the risk landscape for suppliers and is forcing companies to reconsider their risk relationships, says Kelly White, co-founder and CEO of RiskRecon. He discusses the correlation between cyber hygiene, ransomware and data loss.

Business Continuity Management / Disaster Recovery

Cybercrime: Conti Ransomware Retools After Backing Moscow

Anna Delaney • June 23, 2022

The latest edition of the ISMG Security Report investigates the reboot of ransomware group Conti, which supports Russia's invasion of Ukraine. It also discusses why paying ransomware actors is a "business decision" and how to respond to the talent shortage in the financial sector.

Business Continuity Management / Disaster Recovery

Unexpected Pairings: Wine Tasting and Threat Intelligence

Mathew J. Schwartz • June 17, 2022

In his spare time, ransomware expert Allan Liska recently became a certified sommelier. Branching out from his day job as principal intelligence analyst at Recorded Future, Liska says he's found numerous parallels between the deductive tasting process and threat intelligence.

Business Email Compromise (BEC)

Total Business Email Compromise Losses Trump Ransomware

Mathew J. Schwartz • June 16, 2022

Ransomware continues to pummel organizations, with the average ransom payment reaching $925,000 so far this year, but the aggregate financial impact of business email compromise attacks is even worse, says Wendi Whitmore, head of Unit 42 at Palo Alto Networks.

Blockchain & Cryptocurrency

Why Blockchain Is a Double-Edged Sword for Criminals

Mathew J. Schwartz • June 15, 2022

The disruption of the Netwalker ransomware group in January 2021 by U.S. and Bulgarian authorities highlights how blockchain can be an Achilles' heel for cryptocurrency-using criminals, says Jackie Burns Koven, cyberthreat intelligence lead at Chainalysis.