Common evasive phishing tactics that cybercriminals opt to spread ransomware

Cyware | November 07, 2019

Common evasive phishing tactics that cybercriminals opt to spread ransomware
There has been a steep rise in ransomware attacks against multiple government organizations, and cities across the globe. Hackers are frequently creating campaigns designed to take advantage of local employees and steal their credentials to break into computer networks. Once inside, the bad actors effectively lock down the systems and hold the data as a hostage until a ransom amount is not paid.
For a successful injection, cybercriminals have now shifted their focus to social engineering through various types of digital communications. But the most common way of a ransomware infection is through phishing.

Spotlight

Cybersecurity is a major concern in both the private and public sectors. Targeted attacks aimed at commercial and government organizations are on the rise, in both frequency and severity. In recent years, threat actors have become increasingly focused on targeting corporations to obtain sensitive information for financial profit or economic espionage.

Spotlight

Cybersecurity is a major concern in both the private and public sectors. Targeted attacks aimed at commercial and government organizations are on the rise, in both frequency and severity. In recent years, threat actors have become increasingly focused on targeting corporations to obtain sensitive information for financial profit or economic espionage.

Related News

NETWORK THREAT DETECTION

BlackCloak Unveils New Deception Technology to Catch Cyberattacks Targeting Executives & High-Profile Individuals

BlackCloak | November 16, 2021

BlackCloak, Inc., the first Concierge Cybersecurity & Privacy™ Protection Platform for Executives and High-Profile Individuals, today officially unveiled proprietary deception technology to catch adversaries' brazen attempts to exploit a member's privacy, personal devices, or home networks. Commonly referred to as a honeypot, BlackCloak's deception technology lures attackers interacting with a service by simulating a real-world home network. Cybercriminals and advanced attackers will then be enticed by the potential data that appears within their reach. Once the attack is detected, BlackCloak's deception technology automatically alerts the company's Security Operations Center (SOC) to investigate and intervene before damage is done. "Our members are increasingly exposed to sophisticated cyberattacks. Hackers are diversifying their preferred attack vectors beyond corporations and supply chain partners to include executives, high-net-worth individuals and high-profile individuals, many of whom have easily exploitable vulnerabilities in their personal digital lives,Advanced deception technology increases our ability to proactively detect, mitigate, and respond to threats before they manifest. It is the perfect complement to BlackCloak's other concierge cybersecurity and privacy services." Dr. Chris Pierson, BlackCloak Founder & CEO BlackCloak's deception engine, which has been live with existing customers since earlier this year, has already spotted suspicious activity within home environments. The leader in digital executive protection is the first cybersecurity and privacy company to deliver enterprise-grade honeypot technology to consumers. "BlackCloak's design and implementation of deception technology into the personal lives of corporate executives further strengthens their concierge platform," said Bob Ackerman, Co-Founder of DataTribe. "The ability to know an adversary might be lurking inside the footprint of their digital home independent of other common controls is game changing." BlackCloak is a leader in digital executive protection on a mission to protect digital lives. To do so, the company is engineering a holistic, SaaS-based cybersecurity & privacy platform with a concierge experience. BlackCloak works with real people to safeguard their personal and corporate reputation, finances, and information using technology that secures their homes, devices, and online presence. Focusing on high-profile individuals with limited time and a lot to lose, BlackCloak makes sure everything they do is frictionless and discreet. About BlackCloak BlackCloak protects corporate executives and high-profile individuals from cybersecurity, privacy, financial, and other reputational risks. Used by Fortune 500 companies across all industries, the BlackCloak Concierge Cybersecurity & Privacy™ Platform is a holistic solution including mobile and desktop apps as well as concierge support. Executives and high-profile individuals get peace of mind knowing their family, reputation, and finances are secured. Companies rest assured that their brand, intellectual property, data, and finances are protected against threats coming through executives without having to invade their personal lives.

Read More

DATA SECURITY

Morphisec Announces New Incident Response Services as Enterprise Attacks Escalate

Morphisec | August 16, 2021

Morphisec, a leader in cloud-delivered endpoint and server security solutions, today announced the launch of its new incident response services at HIMSS21. The service will help organizations across the healthcare industry, and various other markets, identify, contain, and report on security incidents in progress while validating or verifying the lack of a breach. Morphisec adds this service at a time when a flood of cyber threats have placed businesses under increasing pressure, making incident response necessary for industries like healthcare and manufacturing that need to be operational 24/7. In fact, Morphisec’s Consumer Healthcare Cybersecurity Threat Index found earlier this year that 1 in 5 Americans had a healthcare provider affected by cyberattacks over the last twelve months. Morphisec’s new IR services aims to assist these organizations with containing in-progress incidents, reducing damage, providing recommendations for long-term risk reduction, and auditing critical infrastructure to ensure the lowest possible risk exposure to a cyberattack. The company's highly experienced and on-demand IR team will be led under the direct supervision of the CTO’s office. “In this worsening threat landscape, it’s vital that all businesses have access to the expertise they need to keep their business up and running in the event of a breach -- even if they lack dedicated security professionals,” said Michael Gorelik, Morphisec’s CTO and head of incident response. “Morphisec’s incident response services help every organization under attack to quickly contain the incident, ensure business continuity, and minimize direct and indirect losses. With extensive experience in security incident investigation, companies are in good hands with our talented IR team who will go above and beyond to help them protect their assets from backdoors and persistent malware.” Morphisec’s incident response services will leverage the company’s zero trust at runtime solution to quickly pinpoint and contain threats, promising immediate results before forensic activities are even finalized. Responders will also educate businesses on the root cause of the incident and, in turn, the required corrective actions to improve their current tools and processes. Forensic collection and investigation of affected assets, including the building of an activity timeline, supplying indicators of compromise (IOCs), scoping the impact, mapping of exfiltrated IP, and more Malware analysis: In-depth analysis of a given malware, backdoor, or fileless code, to identify the potential impact Working around the clock during the investigation, with availability whenever we’re needed The option to develop customized scripts to minimize follow-up impact “As cyberattackers continue to target our critical industries such as healthcare, we’re proud to offer this crucial service to organizations who simply cannot afford downtime,” added Gorelik. “Morphisec's impressive suite of cloud-delivered endpoint and server security solutions are already protecting our customers across 8 million endpoints, and the addition of our new incident response service adds a vital layer to triage critical security incidents and reduce the risk of attack for the future.” About Morphisec Morphisec is the world leader in providing advanced security solutions for midsize to small enterprises around the globe. The company’s security products simplify and automatically block modern attacks from the endpoint to the cloud. Unlike traditional security solutions relying on human intervention, Morphisec delivers operationally simple, proactive prevention. This approach protects businesses around the globe with limited security resources and training from the most dangerous and sophisticated cyber attacks.

Read More

New Zealand stock exchange hit by cyber attack for second day

theguardian | August 26, 2020

New Zealand’s stock market has been interrupted by an apparent overseas cyber attack for the second day running. The Wellington-based NZX exchange went offline at 11.24am on Wednesday and although some connectivity was restored for investors, some trading was halted. The NZX said it had experienced “network connectivity issues” and that the NZX main board, NZX debt market and Fonterra shareholders market were placed on halt. However it then announced that those areas would resume trading with the rest of the market at 3pm on Wednesday.

Read More