As per Threat Intel data published by IBM Xforce, 80% of the times, Ransomeware gets initial access using top 3 Attack Vectors – exploiting vulnerabilities contribute 26%, Shadow IT & Stolen Credentials contribute 16%, various variants of phishing attacks contribute 41%, and the rest by other attack vectors. It means that Shadow IT Discovery, identifying… Read More »Achieve 26% Ransomware Risk Reduction By Fixing These CVEs
Ransomware Attacks are increasing globally. The attacks are more targeted and hackers are using modern and sophisticated techniques to achieve their goals. Organizations must have a clear view to their attack surface and an in-depth understanding of adversary behaviour, regularly validate susceptibility of organisations systems against attacks, while testing efficacy of the defensive controls. One… Read More »How to Prepare Against Increasing Ransomware Attacks on RDP
REvil ransomware conducted a massive attack through the Kaseya VSA patch and remote management software that encrypted MSPs worldwide and their customers. The zero-day Kaseya vulnerability was discovered by DIVD researcher Wietse Boonstra and was assigned the CVE-2021-30116 identifier. Kaseya states that REvil used the Zero-day vulnerability in their on-premise VSA service to conduct the… Read More »Kaseya VSA Ransomware Attack 2021
Colonial Pipeline, a privately held largest pipeline operator in the United States was forced to proactively close down operations and freeze IT Systems after being a victim to a massive cyber attack. What Happened? Darkside, a ransomware clan, has taken the responsibility for the attack. What they managed to do was, strike the Colonial Pipeline’s… Read More »Colonial Pipeline Ransomware Attack: What Happened? What You Can Learn?
In our last Fireside chat episode with CISO Platform, a well-known author and cybersecurity professional, Dan Lohrmann, CSO and Chief Strategist at Security Mentor Inc, and Bikash Barai, Co-Founder of FireCompass, discussed a bunch of things on how to effectively run a cyber crisis drill with the US Government and tabletops for enterprise board members.… Read More »CISO Platform Fireside Chat – Running A Cyber Security Drill For The US Government & Homeland Security