Krebs on Security

SEPTEMBER 30, 2023

Earlier this week, KrebsOnSecurity revealed that the darknet website for the Snatch ransomware group was leaking data about its users and the crime gang’s internal operations. It continues: “Prior to deploying the ransomware, Snatch threat actors were observed spending up to three months on a victim’s system.

Ransomware 213

Ransomware Data breaches Encryption Systems administration 213

Krebs on Security

JUNE 1, 2023

According to Megatraffer, EV certificates were a “must-have” if you wanted to sign malicious software or hardware drivers that would reliably work in newer Windows operating systems. More recently, it appears Megatraffer has been working with ransomware groups to help improve the stealth of their malware.

Healthcare 236

Healthcare Passwords Sales Ransomware 236

KnowBe4

DECEMBER 6, 2022

In this Mobile-First module, your users will learn what push notification abuse is, how these attacks work, and learn tips on how to respond to a push notification attack. Ransomware, Ransom-war and Ran-some-where: What We Can Learn When the Hackers Get Hacked. Ransomware strikes organizations almost every two seconds.

Security awareness 87

Security awareness Phishing Risk Insurance 87

Krebs on Security

DECEMBER 29, 2022

Thanks to your readership and support, I was able to spend more time in 2022 on some deep, meaty investigative stories — the really satisfying kind with the potential to affect positive change. Some of that work is highlighted in the 2022 Year in Review review below.

Passwords 227

Passwords Ransomware Computer and Electronics Encryption 227

ForAllSecure

MAY 30, 2023

Say you’re an organization that’s been hit with ransomware. At what point do you need to bring in a ransomware negotiator? Mark Lance, the VP of DFIR and Threat intelligence for GuidePoint Security, provides The Hacker Mind with stories of ransomware cases he’s handled. Should you pay, should you not?

Ransomware 40

Ransomware Encryption Authentication Communications 40