Resources
Providing you the latest industry-specific news and insights.
- podcast
Demystifying Cyber Insurance
Marc Shein, co-chair of Marsh McLennan Agency’s Cyber Center of Excellence, joins this episode of the podcast to discuss how cyber insurance can strengthen your business, risk prevention, and cyber resilience.
Read more - article
Codecov Bash Uploader Supply Chain Attack
By Arete Cyber Threat Intelligence Team EXECUTIVE SUMMARY On April 15, Codecov announced a compromise to its Bash Uploader (a software application used in some of its products), whereby a threat actor was able to send sensitive information from…
Read more - article
Fundamentals of Ransomware: What to Do Before and After Ransomware Strikes
By Raj Sivaraju Amid the pandemic and as more people began working from home via unsecure networks, India saw a 31 percent rise in ransomware attacks.[i] What’s more, according to the Sophos “State of Ransomware 2020” study, of 300…
Read more - podcast
The State of Cybersecurity
Security Superpowers is back! This season's first episode discusses cybersecurity, industry trends, and building a cybersecurity workforce to meet the industry's current demand.
Read more - article
DasH into the Future of Cybercrime
Combination of exfiltration and digital vandalism to disrupt businesses and their operations. By Jaycee Roth It is 6:30AM on a Monday morning, you are startled awake by your phone receiving a call. It is Veronica, a long-time employee complaining…
Read more - report
Q1 2021 Crimeware Report: Post-Mortem Analysis of a Dumpster Fire
Unique insight into the state of ransomware based on data from more than 1,500 incident response and forensics cases.
Read more - article
Black Kingdom Returns to Exploit Zero-Day Vulnerabilities in Unpatched Microsoft Exchange Servers
By Steve Ramey You know what’s fun about zero-day exploits? Nothing, especially when ransomware is involved. Earlier this month, Microsoft released a statement notifying the public of a zero-day exploit that affected its on-premises Exchange…
Read more - article
Microsoft Exchange Server Zero-Day Hack Insight
On March 2, 2021, Microsoft disclosed and provided security updates for four [4] critical vulnerabilities — CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065 — impacting on-premises Microsoft Exchange Servers. While Internet-facing…
Read more - article
Risky Business: Securing a Remote Workforce Comes with Its Challenges – but Also Solutions
In the past year, businesses around the world have had to fundamentally transform how they work and communicate. And not that work from home is new, but it’s certainly never been done at the current scale. To maintain productivity, organizations have…
Read more - article
Don’t Drink from That! Gootloader Watering Hole Leads to REvil Attack
By Arete Forensics Team REvil, more commonly referred to as Sodinokibi, is one of the most prolific ransomware threat groups currently active in the cyber extortion space. In the past year alone, Arete has responded to countless incidents where…
Read more - article
Darkside Ransomware: Caviar Taste on Your Big-Game Budget
By Arete Cyber Threat Intelligence Team EXECUTIVE SUMMARY By all appearances, the proprietors of Darkside ransomware mean business. Big business. With their sights set on organizations with US$4M+ in revenue, they’re all about high-value,…
Read more - article
Top Tips to Improve Cybersecurity Today
By Kevin Baker When I work with clients, I mention a good many things they can do to improve their security. Sometimes I’ll advise on an area I think they need to understand about their company. Sometimes I’ll suggest implementing specific…
Read more