Security News > 2021 > May > Week in review: Dealing with ransomware attacks, detecting use of stolen API credentials inside AWS

To help organizations protect against ransomware attacks and recover from them if they happen, NIST has published an infographic offering a series of simple tips and tactics.

Collaboration between network access brokers and ransomware actors deepensIn this Help Net Security podcast, Brandon Hoffman, CISO at Intel 471, discusses about the increased collaboration between network access brokers and ransomware operators, and how they funcion it today's threat landscape.

RaaS gangs go "Private" after stirring a hornet's nestAfter a decade or so of ransomware attacks against sometimes very prominent targets, the recent Colonial Pipeline ransomware attack by the Darkside gang has been the proverbial straw that broke the camel's back, as the attack was followed by a temporary shut down of the pipeline, which then led to widespread fuel shortages in the Southeast United States and the government issuing a state of emergency for 18 states.

Detecting attackers obfuscating their IP address inside AWSSecurity researchers have documented an attack technique that may allow attackers to leverage a legitimate Amazon VPC feature to mask their use of stolen API credentials inside AWS. How to glean user insight while respecting personal privacyWhile each person has a unique personality and identity, the digital world has no patience for individuality.

Double-extortion ransomware attacks on the riseA Zscaler report outlines a growing risk from double-extortion attacks, which are being increasingly used by cybercriminals to disrupt businesses and hold data hostage for ransom.

Dealing with ransomware attacks: What options do you have?It might seem logical to try to negotiate the ransom demand down to an amount that isn't going to break the bank but would still be enough to satiate cybercriminals' thirst for cash.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/7iQw9KUHvpY/