Blackcat Lake

Eclypsium Launches Guide to Supply Chain Security for Enterprise Infrastructure

Retrieved on: 
Tuesday, November 7, 2023
Technology, Security, Software, Networks, Internet, Hardware, Data Management, IOT (Internet of Things), Supply Chain Management, Retail, Internet of things, Digital, Downfall, TSMC, HP, HPE, Progress Software, AMD, Blackcat Lake, Guide, Organization, MSI, Multimedia, Western Digital, Digital Trust Center, Dell, Intel, Risk, Ecosystem, CPU, Ciso, Cisco, PLA, Gartner, Government, Personal computer, Software as a service, Online shopping, Cryptocurrency, Video game, Gigabyte, NVIDIA, Lenovo

CIOs, CISOs, and supply chain leaders can use the Eclypsium Guide to Supply Chain Security to make more cost-effective and risk-based purchase decisions, as well as assess their exposure to new supply chain cybersecurity incidents.

Key Points: 
  • CIOs, CISOs, and supply chain leaders can use the Eclypsium Guide to Supply Chain Security to make more cost-effective and risk-based purchase decisions, as well as assess their exposure to new supply chain cybersecurity incidents.
  • View the full release here: https://www.businesswire.com/news/home/20231107690618/en/
    Eclypsium Guide to Supply Chain Security (Graphic: Business Wire)
    “Digital supply chain security is a board-level concern for many organizations, and there is an urgent need to provide a central repository for organizations to assess IT product risk,” says Eclypsium CEO and Co-founder Yuriy Bulygin.
  • To schedule a demo of the new Eclypsium Guide or the Eclypsium supply chain security platform, visit www.eclypsium.com or email your Eclypsium representative at [email protected] .
  • Eclypsium’s cloud-based platform provides digital supply chain security for critical software, firmware and hardware in enterprise infrastructure.

Elastic Global Threat Report 2023 Reveals Dominance of Ransomware

Retrieved on: 
Wednesday, October 18, 2023
Data Management, Security, Technology, Software, Artificial Intelligence, Internet, Hive, Cloud, Principle of least privilege, Elastic, NYSE, ESTC, 2008 malware infection of the United States Department of Defense, Illinois Security Lab, Azure, COTS, Maas, Blackcat Lake, Microsoft, Organization, Discovery, Amazon Web Services, Weapon, Google Cloud, Engineering, Metasploit, MacOS, Risk, Microsoft Azure, Defense, Cobalt, Medical imaging, Cryptocurrency, Nursing, Video game, Linux

Elastic ® (NYSE: ESTC) ("Elastic"), the company behind Elasticsearch®, today announced its second Elastic Global Threat Report , issued by Elastic Security Labs .

Key Points: 
  • Elastic ® (NYSE: ESTC) ("Elastic"), the company behind Elasticsearch®, today announced its second Elastic Global Threat Report , issued by Elastic Security Labs .
  • Key findings from the report include:
    The majority of malware observed was composed of a small number of highly prevalent ransomware families and commercial off-the-shelf (COTS) tools.
  • BlackCat, Conti, Hive, Sodinokibi and Stop are the most prevalent ransomware families we identify through signatures, amounting to about 81% of all ransomware activity.
  • For Amazon Web Services, Elastic observed defense evasion (38%), credential access (37%), and execution (21%) as the most common tactics mapped to threat detection signals.

Ransomware Dwell Time Hits Low of 24 Hours

Retrieved on: 
Thursday, October 5, 2023
CVE, Annual report, Threat, Intelligence, Secureworks, IAV, MYSTIC, Security, CTU, AI, Abraham Accords, Organization, Islam, Risk, Behavior, Ministry, MOIS, IRGC, ChatGPT, Hygiene, GOLD, Islamic Revolutionary Guard Corps, Blackcat Lake, Cryptocurrency, Risk management, Pharmaceutical industry, Telegraphy, Shodan, Zimbra

ATLANTA, Oct. 5, 2023 /PRNewswire/ -- Ransomware is being deployed within one day of initial access in more than 50% of engagements, says Secureworks® (NASDAQ: SCWX) Counter Threat Unit™ (CTU™). In just 12 months the median dwell time identified in the annual Secureworks State of the Threat Report has freefallen from 4.5 days to less than one day. In 10% of cases, ransomware was even deployed within five hours of initial access.

Key Points: 
  • In 10% of cases, ransomware was even deployed within five hours of initial access.
  • "The driver for the reduction in median dwell time is likely due to the cybercriminals' desire for a lower chance of detection.
  • The cybersecurity industry has become much more adept at detecting activity that is a precursor to ransomware.
  • The report examines what leak site activity actually reveals about ransomware attack success rates — it's not as straightforward as it seems.

Ransomware Dwell Time Hits Low of 24 Hours

Retrieved on: 
Thursday, October 5, 2023
CVE, Annual report, Threat, Intelligence, Secureworks, IAV, MYSTIC, Security, CTU, AI, Abraham Accords, Organization, Islam, Risk, Behavior, Ministry, MOIS, IRGC, ChatGPT, Hygiene, GOLD, Islamic Revolutionary Guard Corps, Blackcat Lake, Cryptocurrency, Risk management, Pharmaceutical industry, Telegraphy, Shodan, Zimbra

ATLANTA, Oct. 5, 2023 /PRNewswire/ -- Ransomware is being deployed within one day of initial access in more than 50% of engagements, says Secureworks® (NASDAQ: SCWX) Counter Threat Unit™ (CTU™). In just 12 months the median dwell time identified in the annual Secureworks State of the Threat Report has freefallen from 4.5 days to less than one day. In 10% of cases, ransomware was even deployed within five hours of initial access.

Key Points: 
  • In 10% of cases, ransomware was even deployed within five hours of initial access.
  • "The driver for the reduction in median dwell time is likely due to the cybercriminals' desire for a lower chance of detection.
  • The cybersecurity industry has become much more adept at detecting activity that is a precursor to ransomware.
  • The report examines what leak site activity actually reveals about ransomware attack success rates — it's not as straightforward as it seems.

One in Six Attacks on U.S. Government Offices Linked to LockBit

Retrieved on: 
Thursday, September 21, 2023
TYO, Health, Blackcat Lake, Black cat, Trend Micro, RaaS, Intelligence, Research, Government, Organization, Incidence, Fad, OSINT, TSE, Cryptocurrency

DALLAS, Sept. 21, 2023 /PRNewswire/ -- Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global cybersecurity leader, today published data revealing that one in every six ransomware attacks targeting U.S. government offices was traced back to the LockBit ransomware group. The report also noted that the number of new victims increased by 47% from the second half of 2022.

Key Points: 
  • DALLAS, Sept. 21, 2023 /PRNewswire/ -- Trend Micro Incorporated ( TYO: 4704 ; TSE: 4704 ), a global cybersecurity leader, today published data revealing that one in every six ransomware attacks targeting U.S. government offices was traced back to the LockBit ransomware group.
  • The report also noted that the number of new victims increased by 47% from the second half of 2022.
  • Trend's data shows many ransomware threat actors focus on smaller organizations they presume to be less well-defended.
  • The incidence of ransomware attacks targeting U.S. government offices in 2022 has revealed that the LockBit ransomware group was responsible for one in every six of these attacks.

Akamai Research: Rampant Abuse of Zero-Day and One-Day Vulnerabilities Leads to 143% Increase in Victims of Ransomware

Retrieved on: 
Monday, August 7, 2023
Heart, Senior, Blackcat Lake, Akamai Technologies, Research, Extortion, Organization, Name, Black, HP Enterprise Security Products, ZoomInfo, AKAM, Cryptocurrency

CAMBRIDGE, Mass., Aug. 7, 2023 /PRNewswire/ -- Akamai Technologies, Inc. (NASDAQ: AKAM), the cloud company that powers and protects life online, today released a new State of the Internet report that spotlights the evolving ransomware landscape. Ransomware on the Move: Exploitation Techniques and the Active Pursuit of Zero-Days finds that the use of Zero-Day and One-Day vulnerabilities has led to a 143% increase in total ransomware victims between Q1 2022 and Q1 2023. The report also found that ransomware groups increasingly target the exfiltration of files, the unauthorized extraction or transfer of sensitive information, which has become the primary source of extortion. This new tactic indicates file backup solutions are no longer a sufficient strategy to protect against ransomware.

Key Points: 
  • This new tactic indicates file backup solutions are no longer a sufficient strategy to protect against ransomware.
  • According to the report, adversaries are evolving their methods and techniques from phishing to put a greater emphasis on vulnerability abuse.
  • Further analysis shows that the CL0P ransomware group is aggressively developing Zero-Day vulnerabilities, growing its victims by 9x year over year.
  • The ransomware data used throughout this report was collected from the leak sites of approximately 90 different ransomware groups.

Acronis' Mid-Year Cyberthreats Report Reveals 464% Increase in Email Attacks

Retrieved on: 
Thursday, June 29, 2023
Cybercrime, Risk, Becs, Attack, University, Blackcat Lake, LLM, TB, ChatGPT, RMM, URL, Crime, DLP, Cyberattack, Organization, Acronis, EDR, Student, Machine learning, AI, University of Duisburg-Essen, Medical device, Cryptocurrency, Risk management, Internet service provider, Online shopping, Research

In the first half of 2023 alone, the number of email-based phishing attacks has surged 464% when compared to 2022.

Key Points: 
  • In the first half of 2023 alone, the number of email-based phishing attacks has surged 464% when compared to 2022.
  • Over the same frame, there has also been a 24% increase in attacks per organization.
  • In the first half of 2023, Acronis-monitored endpoints observed a 15% increase in the number of files and URLs per scanned email.
  • For more information, download a copy of the full Acronis Mid-Year Cyberthreats Report 2023 here: https://www.acronis.com/en-us/resource-center/resource/acronis-mid-year-...
    To learn more about the report and its findings, visit the Acronis blog post .

Zscaler 2023 Ransomware Report Shows a Nearly 40% Increase in Global Ransomware Attacks

Retrieved on: 
Wednesday, June 28, 2023
Pressure, Deception, Insider, Prevalence, B2B, Blackcat Lake, Electronics, Internet, RaaS, TLS, Attention, Zscaler, Organization, Drug Trafficking Safe Harbor Elimination Act, ZTNA, Doughnut, Radar, Risk, SAN, Security, Architecture, Growth, Research, SSL, Textile, Rest, ZS, Software, Cryptocurrency, Online shopping, Risk management, Latrodectus tredecimguttatus

SAN JOSE, Calif., June 28, 2023 (GLOBE NEWSWIRE) -- Zscaler, Inc. (NASDAQ: ZS), the leader in cloud security, today announced the release of the 2023 ThreatLabz Ransomware Report. This year’s report tracks the ongoing increase in complex ransomware attacks and spotlights recent ransomware trends, including the targeting of public entities and organizations with cyber insurance, growth of ransomware-as-a-service (RaaS), and encryption-less extortion. Since April 2022, ThreatLabz has identified thefts of several terabytes of data as part of several successful ransomware attacks, which were then used to extort ransoms.

Key Points: 
  • The manufacturing sector remains the most targeted industry vertical, accounting for nearly 15% of total ransomware attacks.
  • SAN JOSE, Calif., June 28, 2023 (GLOBE NEWSWIRE) -- Zscaler, Inc. (NASDAQ: ZS), the leader in cloud security, today announced the release of the 2023 ThreatLabz Ransomware Report .
  • This year’s report tracks the ongoing increase in complex ransomware attacks and spotlights recent ransomware trends, including the targeting of public entities and organizations with cyber insurance, growth of ransomware-as-a-service (RaaS), and encryption-less extortion.
  • “Ransomware-as-a-Service has contributed to a steady rise in sophisticated ransomware attacks,” said Deepen Desai, Global CISO and Head of Security Research, Zscaler.

Nubeva Successfully Decrypts Ransomware In Hospital Attack

Retrieved on: 
Thursday, June 8, 2023
Q&A, Blackcat Lake, CLOP, OTCQB, CMO, Organization, Risk, SAN, Health, Pharmaceutical industry

SAN JOSE, Calif., June 08, 2023 (GLOBE NEWSWIRE) -- Nubeva Technologies (TSX-V: NBVA, OTCQB: NBVAF) announces its success in decrypting live LockBit ransomware.

Key Points: 
  • SAN JOSE, Calif., June 08, 2023 (GLOBE NEWSWIRE) -- Nubeva Technologies (TSX-V: NBVA, OTCQB: NBVAF) announces its success in decrypting live LockBit ransomware.
  • This achievement is highlighted in a newly published case study , providing a detailed analysis of a targeted attack and successful recovery at a 240-bed hospital.
  • The study showcases Nubeva's expertise in effectively decrypting ransomware, substantially reducing downtime costs, and minimizing damages within the critical industry.
  • "Persistent ransomware groups, including LockBit, BlackCat, Black Basta, and ClOP, are relentlessly targeting healthcare organizations," said Steve Perkins, CMO at Nubeva.

NordLocker Report: A new scary ransomware group is on the rise

Retrieved on: 
Thursday, April 27, 2023
Bitcoin, NordLocker, Policy, Blackcat Lake, Organization, Name, Hospital, Risk, Map, Software, Cryptocurrency, Medical device, Royal

LONDON, April 27, 2023 (GLOBE NEWSWIRE) -- According to a ransomware analysis report by NordLocker, Royal is a new ransomware group launching record numbers of attacks.

Key Points: 
  • LONDON, April 27, 2023 (GLOBE NEWSWIRE) -- According to a ransomware analysis report by NordLocker, Royal is a new ransomware group launching record numbers of attacks.
  • Royal predominantly targets US companies, accounting for almost 60% of its attacks, according to the NordLocker ransomware analysis report.
  • The Royal ransomware group was particularly active in November 2022, which was the first month the group appeared on the map.
  • In comparison, LockBit, the most infamous ransomware group, conducted 76 and AlphaVM (Blackcat) 28 attacks in the same month.