Discerning trends in ransomware has never been easy, but every now and again something jumps out from the confusion of events that points clearly at trouble ahead. A good current example is the steady rise of the Hive ransomware group, first reported around mid-2021. Since then, there has been a steady stream of attacks attributed […]
In my last post, I explained what the zero trust model is, its three core objectives, and how it can prepare you for even the most unpredictable ransomware attacks. Today, let’s explore the three principles that fulfill those objectives. Inevitable Breaches As I explained previously, the foundation of the zero trust model is the assumption […]
The threat of multiplatform ransomware has been growing over the last several years. The attackers’ motivation is pretty simple: they want to cause the most damage in your environment as quickly as possible, forcing you to pay a large ransom. And attacking multiple platforms is one way to do that. I want to focus on […]
In the era of cloud computing and the continuing trend of work-from-home employees, the ability to connect remotely to servers is central to being able to get almost anything done on a computer. This is often done through Remote Desktop Protocol, or RDP, which means in turn that knowing how to protect RDP has become […]
While we still refer to them as ransomware attacks, such incidents are no longer just about encrypting the files of a targeted victim. Ransomware attacks today are about gaining leverage on someone using whatever means necessary to get paid. The principle of a double extortion strategy is simple. If the first extortion approach isn’t producing […]
Someone out there in Internet-land is extremely angry with the LockBit ransomware group. So angry, in fact, that on the weekend of August 21 they decided to hit the group’s Tor leaks sites with a DDoS attack large enough to take them offline. It’s the sort of thing that probably happens all the time on […]
