You've successfully subscribed to The CISO's Brief
Great! Next, complete checkout for full access to The CISO's Brief
Welcome back! You've successfully signed in.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info is updated.
Billing info update failed.

ransomware

FBI warns a ransomware assault threatens US healthcare system [44.4.1]

FBI warns a ransomware assault threatens US healthcare system [44.4.1]
Members Public

The CISA, the FBI and the US Department of Health Services (HSS) issued a joint alert on October 28th claiming cyber attacks target the US healthcare system. The advisory describes the various tactics used by cybercriminals against hospitals (HPH) that infect systems with Ryuk ransomware.

Analysts team
ransomware
Maze is - not really - shutting down its cybercrime operation [44.4.4]

Maze is - not really - shutting down its cybercrime operation [44.4.4]
Members Public

After a year and a half of cybercrime, Maze has been responsible for attacks against famous victims such as Southwire, City of Pensacola, Canon, LG Electronics, Xerox and many more. Is it rebranding?

Analysts team
ransomware
Ransomware squadron: Oops Enel ransomwared again, Steelcase meets Ryuk and Sopra Steria still drowning under Ryuk [44.3.1]

Ransomware squadron: Oops Enel ransomwared again, Steelcase meets Ryuk and Sopra Steria still drowning under Ryuk [44.3.1]
Members Public

Enel hit by a second ransomware attack this year, Steelcase hit by Ryuk, and update on Sopra Steria hack and its financial consequences

Analysts team
ransomware
Sopra Steria hit by cyber attack, but no public communication since 2 days [43.5.1]

Sopra Steria hit by cyber attack, but no public communication since 2 days [43.5.1]
Members Public

On October 20, Sopra Steria suffered a ransomware attack. What this means.

Analysts team
ransomware
Are ransomware operators the next Robin Hoods? [43.3.3]

Are ransomware operators the next Robin Hoods? [43.3.3]
Members Public

A gang of cybercriminals recently declared having donated to two little known charities. Why this could signal a new trend that matters for cybersecurity defenders.

Analysts team
ransomware
Why operational cybersecurity requires a collaborative approach [43.3.4]

Why operational cybersecurity requires a collaborative approach [43.3.4]
Members Public

Microsoft explained how it neutralized 120 of 128 Trickbot servers in recent takedown, which is a real achievement. We offer an additional angle with recent declarations by US officials at a conference.

Analysts team
botnet
Ransomware attacks show little sign of slowing in 2021 [43.3.2]

Ransomware attacks show little sign of slowing in 2021 [43.3.2]
Members Public

Security experts believe that ransomware attacks will not slow down in 2021. Why and what to do today.

Analysts team
ransomware
Operation Quicksand: MuddyWater group dipping its toes into ransomware deployments [43.1.3]

Operation Quicksand: MuddyWater group dipping its toes into ransomware deployments [43.1.3]
Members Public

Researchers at ClearSky and Profero released report on an attack campaign attributed to the Iranian threat actor "MuddyWater". Learn how its macro TTPs mutate and prepare.

Analysts team
ransomware