Skip to Main Content

Our Insights

Providing you the latest industry-specific news and insights.

  • podcast

    The State of Cybersecurity with Marc Bleicher

    Steve and Marc discuss the current state of cybersecurity, industry trends, and building a cybersecurity workforce to meet the industry's current demand.

    Read more
  • article

    Dear Ramey: We Paid the Ransom. Has Our Data Been Deleted? 

    ANSWERING BURNING QUESTIONS FROM VICTIMS OF CYBER EVENTS DEAR RAMEY:  I’m a bit embarrassed to say this, but we were hacked. They stole our data, posted a blog about it, and said they’d only remove the post if we paid a ransom. It was a…

    Read more
  • article

    DasH into the Future of Cybercrime

    By Jaycee Roth  It is 6:30AM on a Monday morning, you are startled awake by your phone receiving a call. It is Veronica, a long-time employee complaining that she cannot access any of the data on the shared D: drive – a critical drive to the…

    Read more
  • report

    Q1 2021 Crimeware Report: Post-Mortem Analysis of a Dumpster Fire

    Unique insight into the state of ransomware based on data from more than 1,500 incident response and forensics cases.

    Read more
  • article

    Black Kingdom Returns to Exploit Zero-Day Vulnerabilities in Unpatched Microsoft Exchange Servers

    By Steve Ramey You know what’s fun about zero-day exploits? Nothing, especially when ransomware is involved. Earlier this month, Microsoft released a statement notifying the public of a zero-day exploit that affected its on-premises Exchange…

    Read more
  • article

    Microsoft Exchange Server Zero-Day Hack Insight

    On March 2, 2021, Microsoft disclosed and provided security updates for four [4] critical vulnerabilities — CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065 — impacting on-premises Microsoft Exchange Servers. While Internet-facing…

    Read more
  • article

    Risky Business: Securing a Remote Workforce Comes with Its Challenges – but Also Solutions

    In the past year, businesses around the world have had to fundamentally transform how they work and communicate. And not that work from home is new, but it’s certainly never been done at the current scale. To maintain productivity, organizations have…

    Read more
  • article

    Don’t Drink from That! Gootloader Watering Hole Leads to REvil Attack

    By Arete Forensics Team REvil, more commonly referred to as Sodinokibi, is one of the most prolific ransomware threat groups currently active in the cyber extortion space. In the past year alone, Arete has responded to countless incidents where…

    Read more
  • article

    Dear Ramey: Will I Be Hacked Again?

    ANSWERING BURNING QUESTIONS FROM VICTIMS OF CYBER EVENTS DEAR RAMEY: My organization was hacked, and ransomware encrypted our files. We have no interest in paying the ransom because we don’t want to encourage malicious activity. Do we have any…

    Read more
  • article

    Darkside Ransomware: Caviar Taste on Your Big-Game Budget

    By Arete Cyber Threat Intelligence Team EXECUTIVE SUMMARY By all appearances, the proprietors of Darkside ransomware mean business. Big business. With their sights set on organizations with US$4M+ in revenue, they’re all about high-value,…

    Read more
  • article

    Six Decrees of Kevin Baker: Top Tips to Improve Cybersecurity Today

    When I work with clients, I mention a good many things they can do to improve their security. Sometimes I’ll advise on an area I think they need to understand about their company. Sometimes I’ll suggest implementing specific security controls. Some…

    Read more
  • article

    Good Europol Hunting: How Do You Like Them Apples, Emotet?

    On January 27, 2021, Europol announced that it had led a coordinated takedown of the Emotet infrastructure in collaboration with law enforcement authorities in the Netherlands, Germany, the United States, the United Kingdom, France, Lithuania,…

    Read more