Our Insights
Providing you the latest industry-specific news and insights.
Dear Ramey: Bad Guys Deleted Our Data. How Do We Get It Back?
ANSWERING BURNING QUESTIONS FROM VICTIMS OF CYBER EVENTS DEAR RAMEY: My organization was hacked. The bad guy found our data and deleted it — including our backups! All they left was a note stating, “Send a message to this email address to get your…
Read moreThe Hidden Costs of Cybercrime
By Kevin Baker, Director of Cyber Strategy and Defense This year, the global cost of cybercrime is expected to hit $6 trillion.[i] Up from $3 trillion in 2015, it’s nothing short of a big, flourishing business whose operators are relentless…
Read moreCodecov Bash Uploader Supply Chain Attack
By Arete Cyber Threat Intelligence Team EXECUTIVE SUMMARY On April 15, Codecov announced a compromise to its Bash Uploader (a software application used in some of its products), whereby a threat actor was able to send sensitive information from…
Read moreFundamentals of Ransomware: What to Do Before and After Ransomware Strikes
By Raj Sivaraju Amid the pandemic and as more people began working from home via unsecure networks, India saw a 31 percent rise in ransomware attacks.[i] What’s more, according to the Sophos “State of Ransomware 2020” study, of 300…
Read moreDear Ramey: We Paid the Ransom. Has Our Data Been Deleted?
ANSWERING BURNING QUESTIONS FROM VICTIMS OF CYBER EVENTS DEAR RAMEY: I’m a bit embarrassed to say this, but we were hacked. They stole our data, posted a blog about it, and said they’d only remove the post if we paid a ransom. It was a…
Read moreDasH into the Future of Cybercrime
By Jaycee Roth It is 6:30AM on a Monday morning, you are startled awake by your phone receiving a call. It is Veronica, a long-time employee complaining that she cannot access any of the data on the shared D: drive – a critical drive to the…
Read moreBlack Kingdom Returns to Exploit Zero-Day Vulnerabilities in Unpatched Microsoft Exchange Servers
By Steve Ramey You know what’s fun about zero-day exploits? Nothing, especially when ransomware is involved. Earlier this month, Microsoft released a statement notifying the public of a zero-day exploit that affected its on-premises Exchange…
Read moreMicrosoft Exchange Server Zero-Day Hack Insight
On March 2, 2021, Microsoft disclosed and provided security updates for four [4] critical vulnerabilities — CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065 — impacting on-premises Microsoft Exchange Servers. While Internet-facing…
Read moreRisky Business: Securing a Remote Workforce Comes with Its Challenges – but Also Solutions
In the past year, businesses around the world have had to fundamentally transform how they work and communicate. And not that work from home is new, but it’s certainly never been done at the current scale. To maintain productivity, organizations have…
Read moreDon’t Drink from That! Gootloader Watering Hole Leads to REvil Attack
By Arete Forensics Team REvil, more commonly referred to as Sodinokibi, is one of the most prolific ransomware threat groups currently active in the cyber extortion space. In the past year alone, Arete has responded to countless incidents where…
Read moreDear Ramey: Will I Be Hacked Again?
ANSWERING BURNING QUESTIONS FROM VICTIMS OF CYBER EVENTS DEAR RAMEY: My organization was hacked, and ransomware encrypted our files. We have no interest in paying the ransom because we don’t want to encourage malicious activity. Do we have any…
Read moreDarkside Ransomware: Caviar Taste on Your Big-Game Budget
By Arete Cyber Threat Intelligence Team EXECUTIVE SUMMARY By all appearances, the proprietors of Darkside ransomware mean business. Big business. With their sights set on organizations with US$4M+ in revenue, they’re all about high-value,…
Read more