Welcome to ISMG's Ransomware Resource Center!

Ransomware has rapidly become one of the world's most prevalent types of cybercrime. The lure for criminals is easy to see: Using highly automated and easily distributed crypto-locking malware to forcibly encrypt systems, attackers can demand bitcoin ransoms in exchange for decryption keys. Use this Ransomware Resource Center for the latest details on emerging ransomware variants, threat intelligence on attackers, plus best practices for detection, response and remediation.

The All India Institute Of Medical Sciences-New Delhi's Ward Block Building. (Image: Vishnoi M/CC BY-SA 4.0)

Server Remains Down; India's Premier Healthcare Turns to Paper

Prajeet Nair • November 29, 2022

India's flagship combined public medical university and hospital continues to grapple with the fallout of a cyber incident it underwent last Wednesday. Patient care services remain affected as of Tuesday as physicians and staff use manual processes in place of disabled electronic systems.

►

Fraud Management & Cybercrime

Feds Alert Healthcare, Other Sectors of Growing Hive Threats

Latest

Endpoint Protection Platforms (EPP)

CrowdStrike Sales Growth Slows as SMB Clients Delay Spending

Michael Novinson • November 29, 2022

A longer sales cycle for small businesses and delayed subscription start dates for large enterprises has forced CrowdStrike to lower its sales forecast going forward. The Austin-based endpoint security behemoth says deals with SMB clients took 11% longer to close in the fiscal quarter ended Oct. 31.

Application Security

Veracode CEO Sam King on Joining AppSec, Container Security

Michael Novinson • November 29, 2022

The push to migrate applications to cloud-native architectures has driven increased use of containers and created the need for more security, says Veracode CEO Sam King. Veracode's expertise in application security helps the company identify open-source code and known vulnerabilities in containers.

Industry Specific

Why Are HIPAA Fines Down 93% - With Data Breaches Soaring?

Marianne Kolbasuk McGee • November 29, 2022

Healthcare providers and their vendors often fear federal regulatory action, but do fines and corrective action many any difference at all? As breach cases have nearly doubled since 2018, federal fines dropped 93% in 2022, and some say the agency is understaffed and crippled by legal challenges.

Government

RegScale Buys GovReady to Simplify Compliance for the Masses

Michael Novinson • November 29, 2022

RegScale has purchased a startup founded by the FCC's former chief data officer that makes documenting compliance easier for nontechnical personnel by using a questionnaire. The GovReady deal means customers will be able to demonstrate their adherence to standards by answering questions.

Cybercrime

A Look Ahead: Lisa Sotto's Privacy, Security Outlook in 2023

Michael Novinson • November 28, 2022

A multitude of state privacy laws taking effect in 2023 has forced organizations to revamp their compliance programs to incorporate the disparate requirements, says Lisa Sotto. Companies across every industry face a threat environment that's more active and malicious than ever before.

Business Continuity Management / Disaster Recovery

Cyber Resilience Minimizes Risks for Digital Services

Brian Pereira • November 25, 2022

Cyber resilience extends beyond cyberattacks and encompasses the convergence of security and disaster recovery and takes into account other factors such as supply chain disruption, attacks on critical infrastructure, epidemics, market fluctuations, power outages, and natural disasters.

Cybercrime

ISMG Editors: The Rise of Info Stealing Malware

Anna Delaney • November 25, 2022

In the latest weekly update, Information Security Media Group Editors discuss current cybersecurity and privacy issues, including advice on strengthening off-hours defenses during the holiday season, emerging cybercrime trends in 2022, and Palo Alto's first big M&A since early 2021.

Cryptocurrency Fraud

Cybercrime Carnage: Cryptocurrency-Targeting Attacks Abound

Mathew J. Schwartz • November 25, 2022

While the cybercrime story for 2022 has yet to be fully written, cryptocurrency theft will no doubt have a starring role. Buoyed by the collective pilfering of billions of dollars' worth of cryptocurrency this year, what's to stop attackers from doubling down in 2023?

Blockchain & Cryptocurrency

Ransomware Group Zeppelin's Costly Encryption Mistake

Anna Delaney • November 24, 2022

The latest edition of the ISMG Security Report discusses how the profits of ransomware group Zeppelin have been smashed by security researchers, FTX again highlighting the risks of trading cryptocurrencies, and vendor Extrahop's newly appointed, high-profile president.

Operational Technology (OT)

Tata Power Attack Linked to Bug in Nearly 20-Year-Old Server

Mihir Bagwe • November 23, 2022

Microsoft says vulnerabilities in outdated web servers are likely responsible for a cyberattack last month against Indian energy giant Tata Power. Attackers targeted Boa servers, which were discontinued in 2005, to potentially compromise Tata and other critical infrastructure organizations around the world.

Anti-Phishing, DMARC

Russian Hackers Now Offering Stealer as a Service

Akshaya Asokan • November 23, 2022

Security firm Group-IB has identified 34 hacking groups that are now selling a stealer-as-a-service model to spread infostealer malware and steal credentials from online gaming and payment accounts. The company advises organizations to be on the lookout for Raccoon and Redline infostealers.

Cyberwarfare / Nation-State Attacks

Russian KillNet Shuts Down EU Parliament Website With DDoS

Akshaya Asokan • November 23, 2022

Pro-Kremlin KillNet hackers took down the website of the European Parliament on Wednesday in a DDoS attack that came just hours after the legislative body declared Russia a terrorist state. The website was still down late in the day as part of a string of hacktivist attacks against allied nations.