The tail end of the calendar year represents arguably the most important period for retailers and companies working in e-commerce, with a huge amount of yearly profits determined in the penultimate two months of the year. This profit is largely generated through the two biggest online sales events of the year, Black Friday and Cyber […]
Recent reporting from Microsoft has shone light on the “HolyGhost” ransomware group, a cybercriminal outfit originating from North Korea. While this might appear like yet another ransomware group, in what is an increasingly saturated market, HolyGhost holds a number of distinctions from their peers. Conducting cybercriminal operations from a communist state represents a number of […]
You’d have to have been living under a rock to have avoided the excitement surrounding Non-Fungible-Tokens (NFTs) in the last year, which have taken both the cryptocurrency and art world by storm. NFTs have been in existence since 2014, existing as a digital receipt recording ownership of digital and physical assets; this includes art, videos, […]
What we know about the Okta breach, Lapsus$ group, and what you can do today to protect your organization.
In December 2021, a new cyber threat group began attracting the security community’s attention, after conducting several high-profile extortion attacks against organizations operating in Latin America and then move on to global targets like Samsung and NVIDIA. In the early stages of their operations, the Lapsus$ threat group compromised and attempted to extort the Brazilian […]
Exploring cyber threats to Government and Public bodies, including ransomware targets and initial access listings
As the end of the year approaches, it’s time once again to look at the initial access broker (IAB) activity in the previous quarter. For those who didn’t catch our research paper released in March 2021, IABs act as a middleman by identifying vulnerable organizations and selling access to them to the highest bidder. These […]
The world of ransomware and cyber extortion continues to change dramatically. On the one hand, new ransomware variants and data leak sites are popping up like mushrooms; on the other, threat groups disappear into the shadows, leaving their mark on the world only to fade away. However, even on the surface, the goal remains the […]
We can’t stop talking about it: Ransomware. It’s dominating a lot of security news for sure, which also means it’s definitely in the media cycle and on everyone’s mind. Ransomware groups have recently upped the ante with their attacks with adaptations of various tactics, techniques, and procedures (TTP) in the threat landscape. As if it […]
Consistency is the first word that springs to mind when assessing ransomware activity throughout the Q1 of 2021. There have been consistent double extortion ransomware activity levels, with key players in the threat landscape continuing where they left off in 2020, regularly adding data stolen from victims to their data leak websites. Consistent pressure from […]