ransomware
SentinelOne: Ransomware actors are adapting to EDR
News | SecurityAt RSA Conference 2024, SentinelOne's Alex Samos discussed ongoing global threats such as ransomware and how threat actors are changing their ...
Authorities identify, sanction LockBit ransomware ringleader
News | SecurityAfter weeks of waiting, authorities in the U.S., the U.K. and Australia publicly identified 'LockBitSupp,' the mysterious operator behind the ...
Banning ransomware payments back on the agenda
News | ComputerWeekly.comThe idea of banning ransomware payments to cyber criminals is back on the agenda, with former NCSC chief Ciaran Martin arguing that tougher measures ...
Ukrainian national sentenced over REvil ransomware spree
News | ComputerWeekly.comA 24-year-old Ukrainian man has been sentenced to more than 13 years in prison after being convicted of his role in the REvil ransomware attacks
Commvault adds Cleanroom Recovery for ransomware attacks
News | Data BackupA new Cleanroom Recovery service enables customers to spin up data center infrastructure within Commvault Cloud for continued enterprise operations ...
Ransomware payment bans need universal buy-in
Opinion | ComputerWeekly.comIn the wake of renewed calls for lawmakers to consider enacting legal bans on ransomware payments, the Computer Weekly Security Think Tank weighs in ...
Dymium scares ransomware attacks with honeypot specters
News | SecurityDymium, a security startup that recently emerged from stealth, offers ransomware defense for data stores with a network of honeypot traps for ...
Mandiant: Attacker dwell time down, ransomware up in 2023
News | SecurityMandiant's 'M-Trends' 2024 report offered positive signs for global cybersecurity but warned that threat actors are shifting to zero-day exploitation...
Cops take down LockBit ransomware gang
News | ComputerWeekly.comThe notorious LockBit ransomware crew has been disrupted in an international law enforcement sting led by the UK's National Crime Agency
Cyber-resilient storage a final defense against ransomware
News | StorageFeatures to enhance storage cyber resiliency should be table stakes for buyers, experts say. But enhancements are needed to stave off ransomware ...
Podcast: Immutable storage essential against ransomware, but...
Podcast | ComputerWeekly.com...not all immutable storage is created equal. That’s the message from Paul Speciale of Scality, who looks at immutable storage, its variants and ...
Better hygiene may mitigate the need to ban ransomware payments
Opinion | ComputerWeekly.comIn the wake of renewed calls for lawmakers to consider enacting legal bans on ransomware payments, the Computer Weekly Security Think Tank weighs in ...
Ransomware attacks ravaged municipal governments in March
News | SecurityMany municipalities across the U.S. faced network outages, data breaches and large ransom demands following a flurry of ransomware attacks last month.
Inside an Alphv/BlackCat ransomware attack
News | SecuritySygnia researchers investigated an intrusion in a client's network and discovered an Alphv/BlackCat ransomware actor had been lurking in the ...
Sophos: Ransomware present in 70% of IR investigations
News | SecuritySophos' Active Adversary Report said securing remote desktop protocols and Active Directories and hardening credentials can help limit the influx of ...
Security Think Tank: How to tackle the scourge of ransomware?
Opinion | ComputerWeekly.comIn the wake of renewed calls for lawmakers to consider enacting legal bans on ransomware payments, the Computer Weekly Security Think Tank weighs in ...
Risk & Repeat: Change Healthcare's bad ransomware bet
News | SecurityThis Risk & Repeat podcast discusses Change Healthcare's ransomware attack and the apparent further spread of sensitive data despite the company ...
Inside LockBit: A ransomware gang in decline?
News | ComputerWeekly.comThe LockBit ransomware gang was already on the ropes prior to the NCA-led takedown, according to security researchers
Ransomware disrupts utilities, infrastructure in January
News | SecurityRansomware attacks last month caused outages and disruptions at public sector and critical infrastructure organizations as well as a major financial ...
Sophos: Remote ransomware attacks on SMBs increasing
News | SecurityAccording to new research from Sophos, small businesses are seeing a rise in threats such as remotely executed ransomware attacks, malvertising, ...
Chainalysis: 2023 a 'watershed' year for ransomware
News | SecurityChainalysis said ransomware payments ballooned to reach $1.1 billion in 2023, marking a complete reversal from the decline in ransomware payments ...
Security Think Tank: Banning ransomware payments is not so straightforward
Opinion | ComputerWeekly.comIn the wake of renewed calls for lawmakers to consider enacting legal bans on ransomware payments, the Computer Weekly Security Think Tank weighs in ...
Ransomware kill switch may save 99% of files from encryption
News | ComputerWeekly.comMDR specialist Adlumin says its new features will help customers stop in-progress ransomware attacks before they can cause significant damage
Trend Micro: LockBit ransomware gang's comeback is failing
News | SecurityLockBit is struggling to resume operations in part due to the name-and-shame aspect of the international law enforcement operation responsible for ...
Security Think Tank: Ransomware lessons from the armed forces
Opinion | ComputerWeekly.comIn the wake of renewed calls for lawmakers to consider enacting legal bans on ransomware payments, the Computer Weekly Security Think Tank weighs in ...
New version of ALPHV/BlackCat ransomware hits victims
News | ComputerWeekly.comAn updated version of the ALPHV/BlackCat ransomware has been spotted in the wild amid a series of attacks on American healthcare providers, prompting...
Storage technology explained: Ransomware and storage and backup
Feature | ComputerWeekly.comWe look at ransomware attacks, and the importance of good backup practice as well as immutable snapshots, air-gapping, network segmentation, AI ...
Flashpoint observes 84% surge in ransomware attacks in 2023
News | SecurityThe threat intelligence vendor anticipates that enterprises will continue to face increases in ransomware activity and data breaches in 2024, with ...
Ransomware gangs exploiting ConnectWise ScreenConnect flaws
News | SecurityRansomware activity is ramping up against vulnerable ScreenConnect systems as Black Basta and Bl00dy threat actors were observed exploiting the ...
IBM FlashSystem update focuses on ransomware detection
News | StorageIBM FlashSystem builds on the ransomware fight in primary storage by adding AI to its FlashCore Module storage media and to Storage Defender, its ...
CISA: Akira ransomware extorted $42M from 250+ victims
News | SecurityThe Akira ransomware gang, which utilizes sophisticated hybrid encryption techniques and multiple ransomware variants, targeted vulnerable Cisco VPNs...
NCSC says AI will increase ransomware, cyberthreats
News | SecurityWhile other threats are likely to increase as well, the U.K.'s National Cyber Security Centre warns that threat actors will use AI to continue the ...
Security Think Tank: Approaches to ransomware need a course correction
Opinion | ComputerWeekly.comIn the wake of renewed calls for lawmakers to consider enacting legal bans on ransomware payments, the Computer Weekly Security Think Tank weighs in ...
NCC Group: Ransomware attacks jump 73% in February
News | SecurityWhile NCC Group expected an increase in ransomware attacks from January to February, year-over-year data showed just how persistent the threat is to ...
Operation Cronos dismantles LockBit ransomware gang
News | SecurityAn international law enforcement operation led by the U.K.'s National Crime Agency seizes LockBit's websites, servers, source code and decryption ...
British Library opens up over ransomware attack to help others
News | ComputerWeekly.comThe British Library has opted for full transparency after experiencing a devastating ransomware attack, publishing details of the intrusion, its ...
Ransomware preparedness kicks off 2024 summit series
Feature | SecurityBrightTALK commenced the new year with ransomware readiness, giving viewers workable tips to prevent and recover from a devastating attack. Check out...
Babuk Tortilla ransomware decryptor made available
News | ComputerWeekly.comA joint effort between Cisco Talos, Avast and the Dutch police will bring relief to many victims of a variant of the Babuk ransomware known as ...
NCC Group records the most ransomware victims ever in 2023
News | SecurityEnterprises faced an alarming number of ransomware attacks as gangs targeted supply chains and took advantage of zero-day vulnerabilities and ...
ALPHV/BlackCat gang vanishes amid ransomware ‘turmoil’
News | ComputerWeekly.comMystery surrounds the apparent disappearance of the ALPHV/BlackCat cyber crime gang amid reports that a prominent US victim paid a $22m ransom
Infosec pros weigh in on proposed ransomware payment bans
Feature | SecurityWhether for or against a payment ban, security professionals are concerned regulations could negatively affect victims and result in fewer incident ...
LockBit, Alphv/BlackCat highlight February ransomware activity
News | SecurityWith events surrounding the LockBit and Alphv/BlackCat gangs and the ConnectWise ScreenConnect flaws, ransomware activity continues this year after a...
Ransomware gang leaks data stolen from Scottish NHS board
News | ComputerWeekly.comData stolen from an earlier attack on NHS Dumfries and Galloway has been leaked by a ransomware gang that claims to be in possession of much more ...
What is ransomware? How it works and how to remove it
Definition | SecurityRansomware is a type of malware that locks and encrypts a victim's data, files, devices or systems, rendering them inaccessible and unusable until ...
Top 13 ransomware targets in 2024 and beyond
Feature | SecurityTwo in three organizations suffered ransomware attacks in a single year, according to recent research. And, while some sectors bear the brunt, no one...
Qilin ransomware gang claims cyber attack on the Big Issue
News | ComputerWeekly.comA ransomware attack on the systems of publisher and social enterprise Big Issue Group has been claimed by the Qilin gang
Corvus: 2023 was a 'record-breaking' ransomware year
News | SecurityThe insurance company analyzed claims data and ransomware gangs' data leak sites, which suggests as many as 7,600 organizations across the globe were...
Can ransomware infect backups? 3 tips to protect data
Answer | Data BackupBacking up data is one way to guard against threats such as ransomware, but attacks designed to infect backups can compromise data protection efforts.
10 of the biggest ransomware attacks in 2023
News | SecurityRansomware attacks against U.S. organizations hit record levels this year as threat actors stepped up extortion tactics and took shaming victims to ...
ConnectWise users see cyber attacks surge, including ransomware
News | ComputerWeekly.comConnectWise ScreenConnect users who have yet to patch against a critical vulnerability are now being targeted by a barrage of cyber attacks, ...
AI will heighten global ransomware threat, says NCSC
News | ComputerWeekly.comThe benefits of artificial intelligence to cyber criminals being well-known, the NCSC now assesses it’s likely AI will soon be widely used to enhance...
What is extortionware? How does it differ from ransomware?
Answer | SecurityPrevention is the only line of defense against an extortionware attack. Learn how extortionware works and why it can be more damaging than ransomware.
How ransomware gangs are engaging -- and using -- the media
News | SecurityNew Sophos research shows that ransomware groups are not only attacking technical systems, but taking advantage of information systems as well to ...
The human toll of ransomware: how IT pros suffer during incidents
Opinion | ComputerWeekly.comAny ransomware attack causes significant challenges for a business or organisation going through such incident. But ransomware attacks also have ...
British Library catalogues back online after ransomware attack
News | ComputerWeekly.comThe British Library has restored online access to its main catalogue of nearly 40 million items on a limited basis as it continues the long and ...
triple extortion ransomware
Definition | SecurityTriple extortion ransomware is a type of ransomware attack where a cybercriminal extorts their victim multiple times, namely by encrypting data, ...
double extortion ransomware
Definition | SecurityDouble extortion ransomware is a novel form of malware that combines ransomware with elements of extortionware to maximize the victim's potential ...
Southern Water customer data was taken in ransomware attack
News | ComputerWeekly.comSouthern Water has started to contact customers whose data was stolen in a January 2024 ransomware attack on its systems
Ransomware prevention a focus for storage stewards in 2024
News | Data BackupIn 2024, generative AI and machine learning, along with employee education, are important tools to prevent the spread of ransomware throughout the ...
Ransomware ramps up against private sector in November
News | SecurityRansomware disclosures and reports increased again in November, with the most disruptive and dangerous attacks occurring against healthcare ...
WannaCry ransomware
Definition | SecurityWannaCry ransomware is a cyber attack that spreads by exploiting vulnerabilities in the Windows operating system.
How to recover from a ransomware attack
Tip | SecurityWith a ransomware recovery plan, organizations can act quickly to prevent data loss without descending into chaos. Learn the six steps to incorporate...
December ransomware attacks disrupt healthcare organizations
News | SecurityTwo attacks last month exposed the sensitive information of more than 3 million individuals as ransomware attacks continued to disrupt networks and ...
Ransomware trends, statistics and facts heading into 2024
Feature | SecuritySupply chain attacks, double extortion and RaaS are just a few of the ransomware trends that will continue to disrupt businesses in 2024. Is your ...
Should companies make ransomware payments?
Tip | SecurityOnce infected with ransomware, organizations face a major question: to pay or not to pay? Law enforcement recommends against it, but that doesn't ...
Akira ransomware gang claims Lush cyber attack
News | ComputerWeekly.comThe Akira ransomware gang claims to have stolen over 100GB of data from cosmetics manufacturer and retailer Lush
How ransomware gangs use the tech media against their victims
News | ComputerWeekly.comRansomware gangs are increasingly media-savvy operators, and this means incident response plans now need to account for communications and PR ...
Critical UK infrastructure a ‘hostage of fortune’ to ransomware
News | ComputerWeekly.comA lack of ransomware planning and preparedness at the highest levels of government is leaving UK operators or critical national infrastructure ...
How to train employees to avoid ransomware
Tip | SecurityDo your employees know what to do if ransomware strikes? As your organization's first line of defense, they should receive regular trainings on ...
How to remove ransomware, step by step
Tip | SecurityPrevention is key when it comes to ransomware infections. But there are ways to recover data if a device is compromised. Uncover four key steps to ...
Amsterdam arrest leads to Babuk Tortilla ransomware decryptor
News | SecurityA joint effort by Cisco Talos, Avast and Dutch law enforcement results in an all-encompassing Babuk ransomware recovery key and the arrest of a ...
2023 may have seen highest ransomware ‘body count’ yet
News | ComputerWeekly.comRansomware, or cyber extortion as it is increasingly being termed, remained the most prominent security threat in 2023 – and thanks to large-scale ...
British Library ransomware attack could cost up to £7m
News | ComputerWeekly.comThe cost of recovering the British Library’s ransomware-stricken IT systems could be up to £7m, it has emerged
The history and evolution of ransomware
Feature | SecurityRansomware has evolved from a malicious floppy disk demanding $189 in ransom to a multibillion-dollar industry with ransom for rent, sophisticated ...
6 stages of the ransomware lifecycle
Tip | SecurityKnow thy enemy. By understanding the nuances of the ransomware lifecycle, enterprise security teams can best protect their organizations from attacks.
CISA deputy director touts progress, anti-ransomware efforts
News | SecurityIn this Q&A, CISA Deputy Director Nitin Natarajan shares his thoughts on scaling up to meet high demand, the agency's new initiative to address ...
How to prevent ransomware in 6 steps
Tip | SecurityRansomware can cost companies billions in damage. Incorporate these ransomware prevention best practices, from defense in depth to patch management, ...
Malware vs. ransomware: What's the difference?
Feature | WhatIsRansomware is a type of malware, or malicious software. While all ransomware is malware, not all malware is ransomware.
ransomware as a service (RaaS)
Definition | WhatIsRansomware as a service (RaaS) is a subscription-based business model that enables affiliates to launch ransomware attacks by accessing and using ...
Ransomware gang grasses up uncooperative victim to US regulator
News | ComputerWeekly.comThe ALPHV/BlackCat ransomware gang has added a new tactic to its playbook, going to ever more extreme lengths in search of a pay-off
BlackCat affiliate seen using malvertising to spread ransomware
News | ComputerWeekly.comResearchers at eSentire identified a wave activity from an ALPHV/BlackCat ransomware affiliate which has adopted a somewhat unusual approach to ...
Ransomware: All the ways you can protect storage and backup
Feature | ComputerWeekly.comWe survey the key methods of ransomware protection, including immutable snapshots, anomaly detection, air-gapping, anomaly detection, and supplier ...
Ransomware disrupts hospitality, healthcare in September
News | SecurityRansomware disclosures and reports last month were headlined by attacks on MGM Resorts and Caesars Entertainment, which proved costly to the Las ...
Suspected ransomware attack hits Scottish council
News | ComputerWeekly.comSystems at Comhairle nan Eilean Siar were downed on 7 November in a suspected ransomware attack
Ransomware continues to rise in October across all sectors
News | SecurityRansomware disclosures and reports surged last month, leading in some cases to bankruptcy filing, prolonged business disruptions and ambulance ...
South Staffs Water faces group action over Clop ransomware attack
News | ComputerWeekly.comSouth Staffordshire Plc, the parent company of South Staffordshire and Cambridge Water, is facing legal action from customers whose data was ...
Dual ransomware attacks on the rise, but causes are unclear
News | SecurityWhile the FBI warned enterprises of an increase in dual ransomware attacks, infosec experts said there's insufficient data to consider the threat a ...
Black Basta and Bl00dy ransomware gangs exploiting ConnectWise vulns
News | ComputerWeekly.comMore ransomware gangs have been observed exploiting two dangerous vulnerabilities in ConnectWise ScreenConnect software, prompting new warnings for ...
The 10 biggest ransomware attacks in history
Tip | SecurityFrom private organizations and manufacturers to healthcare organizations and entire countries, read up on 10 of the most famous ransomware attacks of...
Law enforcement dismembers major ransomware operation in Ukraine
News | ComputerWeekly.comA joint law enforcement operation between the Ukrainian authorities, Europol and Eurojust has seem five ransomware operators taken into custody
Europol, Ukraine police arrest alleged ransomware ringleader
News | SecurityEuropol and Ukraine's National Police arrested the alleged leader of a ransomware gang last week, along with four accomplices, dismantling the ...
CISA relaunches working group on cyber insurance, ransomware
News | SecurityFollowing a hiatus, the Cybersecurity Insurance and Data Analysis Working Group will relaunch in December to determine which security measures are ...
Offline backups are a key part of a ransomware protection plan
Tip | Data BackupRansomware resilience relies not on a single tool, but on several layered protections. Offline backups are a critical layer in a ransomware ...
Types of ransomware and a timeline of attack examples
Feature | SecurityThere are eight main types of ransomware but hundreds of examples of ransomware strains. Learn how the ransomware types work, and review notable ...
Alphv ransomware gang claims it reported MeridianLink to SEC
News | SecurityMeridianLink said it recently identified a "cybersecurity incident," but the Alphv ransomware gang claims it breached the company and compromised ...
British Library’s Halloween cyber scare was ransomware
News | ComputerWeekly.comThe British Library has provided an update on an ongoing cyber incident affecting its systems, confirming it to be the result of a ransomware attack
Ransomware dwell times now measured in hours, says Secureworks
News | ComputerWeekly.comRansomware payloads are now being deployed and executed within 24 hours in more than 50% of cases, according to Secureworks’ annual report
How to create a ransomware incident response plan
Tip | SecurityA ransomware incident response plan may be the difference between surviving an attack and shuttering operations. Read key planning steps, and ...
Best practices for reporting ransomware attacks
Answer | SecurityOrganizations must decide whether to report ransomware incidents to the authorities and disclose them to the public. Experts weigh in on the options ...
‘Top’ ransomware gangs favour smaller businesses
News | ComputerWeekly.comDespite high-profile attacks on prominent organisations, the world’s most prolific ransomware operations tend to target smaller businesses