Welcome to ISMG's Ransomware Resource Center!

Ransomware has rapidly become one of the world's most prevalent types of cybercrime. The lure for criminals is easy to see: Using highly automated and easily distributed crypto-locking malware to forcibly encrypt systems, attackers can demand bitcoin ransoms in exchange for decryption keys. Use this Ransomware Resource Center for the latest details on emerging ransomware variants, threat intelligence on attackers, plus best practices for detection, response and remediation.

French Shipping Firm CMA CGM Investigates 'Malware' Attack

Akshaya Asokan • September 29, 2020

French shipping firm CMA CGM Group is investigating what it calls a "malware" attack against its systems that has been causing disruptions. The firm is one of the largest container and shipping companies in the world.

Business Continuity Management / Disaster Recovery

Ransomware Attack at Hospital Leads to Patient's Death

Latest

Fraud Management & Cybercrime

Ransomware Gangs Find Fresh Ways to Make Victims Pay

Anna Delaney • September 11, 2020

The latest edition of the ISMG Security Report analyzes how criminals keep finding new ways to make ransomware victims pay. Also featured: Preventing digital currency counterfeits; a proposed health data privacy framework.

Cybercrime

Stung by Ransomware, Australia Urges Better Preparation

Jeremy Kirk • September 7, 2020

Ransomware continues to pose a "significant" threat, and email remains one of the top attack vectors being used by both criminals and nation-states, Australia's Cyber Security Center warns in its latest "Cyber Threat Report," which urges organizations to improve their defenses.

Breach Notification

A Tale of Two Hacker Incidents

Marianne Kolbasuk McGee • September 1, 2020

Two recent hacking incidents that each affected more than 100,000 individuals illustrate the variety of cyberthreats healthcare organizations face during these chaotic times. Security experts offer risk mitigation insights.

Cybercrime

Elon Musk Says Tesla Saved From 'Serious' Ransom Attempt

Mathew J. Schwartz • August 28, 2020

Tesla CEO Elon Musk says a "serious attack" aimed at stealing corporate data and holding his company to ransom has been thwarted. The FBI has accused a Russian national of attempting to recruit an insider to install malware to steal data, which criminals hoped to ransom for $4 million.

Business Continuity Management / Disaster Recovery

Ransomware: DarkSide Debuts; Script-Kiddies Tap Dharma

Mathew J. Schwartz • August 24, 2020

Ransomware-wielding gangs continue to rack up new victims and post record proceeds. That's driving new players of all sizes and experience to try their hand at the crypto-locking malware and data-exfiltration racket.

Fraud Management & Cybercrime

How COVID-19 Is Changing CISOs' Approaches to Security

Prajeet Nair • August 19, 2020

The COVID-19 pandemic is forcing big businesses to rethink their security plans. For example, the National Football League is experimenting with "zero trust" architectures, while Jet Blue is focusing on more frequent risk assessments.

Business Continuity Management / Disaster Recovery

Carnival Cruise Ship Firm Investigating Ransomware Attack

Chinmay Rautmare • August 18, 2020

Carnival Corp., the world's largest cruise ship company, is investigating a ransomware attack that likely compromised customer and employee data, according its filing with the SEC. It's the company's second security incident this year.

Breach Notification

Health Data Breach Tally Surges

Marianne Kolbasuk McGee • August 13, 2020

Why has the tally of major health data breaches - and the number of individuals affected - spiked in recent weeks? Here's an analysis of the latest trends.

Fraud Management & Cybercrime

Canon USA Websites Offline Following Cyber Incident

Prajeet Nair • August 6, 2020

Several Canon USA corporate websites remained offline Friday after the company reportedly sustained a ransomware attack. Earlier, the imaging company reported user data was missing from a cloud database.

Breach Notification

Blackbaud's Bizarre Ransomware Attack Notification

Mathew J. Schwartz • July 31, 2020

How many different shades of bizarre is the data breach notification issued by software vendor Blackbaud? Over the course of three paragraphs, Blackbaud normalizes hacking, congratulates its amazing cybersecurity team, and says it cares so much for its customers that it paid a ransom to attackers.

Fraud Management & Cybercrime

Lazarus Group Reportedly Now Wielding Ransomware

Akshaya Asokan • July 30, 2020

The Lazarus Group, the North Korean hacking group behind the WannaCry worm, the theft of $81 million from a Bangladesh bank and the attacks on Sony Pictures, apparently is expanding into ransomware, according to the security firm Kaspersky.

Breach Notification

SEI Investments: Vendor Hit by Ransomware, Data Leaked

Chinmay Rautmare • July 28, 2020

Fund administrator SEI Investments Co. acknowledged Monday that it suffered a data breach after one of its vendors was struck with a ransomware attack, resulting in some of its customers' data being made public by the malicious actors.