Readers of this site (as well as our book, “Ransomware: Understand. Prevent. Recover”) will know that ransomware-as-a-service is becoming a popular way for cybercriminals to make money. Now that service model is being applied to zero-day exploits, leading to the rise of “exploit-as-a-service.”The idea behind exploit-as-a-service (EaaS) is that when criminals discover a zero-day vulnerability—i.e., […]
“Our message to ransomware criminals is clear: If you target victims here, we will target you,” reads the warning from Deputy U.S. Attorney General Lisa Monaco. It’s no idle threat, either—it was attached to a press release detailing the arrest of two people allegedly involved in several Sodinokibi/REvil ransomware attacks.Ukrainian national Yaroslav Vasinskyi, 22, was […]
Oh BlackMatter, we hardly knew ye. The criminal ransomware gang that first appeared in July 2021 has apparently ceased operations as of November 2021. In that short lifespan, however, it still managed to wreak significant havoc with its attacks.Vx-underground, which tracks ransomware, Tweeted out part of an alleged statement from BlackMatter. The original message is […]
We recently asked renowned Ransomware Expert Allan Liska: "What takes place during a tabletop exercise and why is it useful to do?" see his response in this video, and in case you've missed it, here's the transcript:James Green:So, one of the ways that folks can be best prepared for a potential ransomware attack is to […]
We recently asked renowned Ransomware Expert Allan Liska: "What are the "big" common attack vectors that ransomware actors use?" see his response in this video, and in case you've missed it, here's the transcript:James Green:Ransomware attackers often get in using one of only a couple popular mechanisms, and so if we can be watching for […]
We recently asked renowned Ransomware Expert Allan Liska: "What should you be on the lookout for to stop an attack in progress and avoid the worst of it?" see his response in this video, and in case you've missed it, here's the transcript:James Green:Ransomware attackers follow a pretty consistent playbook most of the time. And […]