Security News > 2021 > May > Week in review: Dealing with ransomware attacks, detecting use of stolen API credentials inside AWS
To help organizations protect against ransomware attacks and recover from them if they happen, NIST has published an infographic offering a series of simple tips and tactics.
Collaboration between network access brokers and ransomware actors deepensIn this Help Net Security podcast, Brandon Hoffman, CISO at Intel 471, discusses about the increased collaboration between network access brokers and ransomware operators, and how they funcion it today's threat landscape.
RaaS gangs go "Private" after stirring a hornet's nestAfter a decade or so of ransomware attacks against sometimes very prominent targets, the recent Colonial Pipeline ransomware attack by the Darkside gang has been the proverbial straw that broke the camel's back, as the attack was followed by a temporary shut down of the pipeline, which then led to widespread fuel shortages in the Southeast United States and the government issuing a state of emergency for 18 states.
Detecting attackers obfuscating their IP address inside AWSSecurity researchers have documented an attack technique that may allow attackers to leverage a legitimate Amazon VPC feature to mask their use of stolen API credentials inside AWS. How to glean user insight while respecting personal privacyWhile each person has a unique personality and identity, the digital world has no patience for individuality.
Double-extortion ransomware attacks on the riseA Zscaler report outlines a growing risk from double-extortion attacks, which are being increasingly used by cybercriminals to disrupt businesses and hold data hostage for ransom.
Dealing with ransomware attacks: What options do you have?It might seem logical to try to negotiate the ransom demand down to an amount that isn't going to break the bank but would still be enough to satiate cybercriminals' thirst for cash.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/7iQw9KUHvpY/
Related news
- New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data (source)
- Keytronic reports losses of over $17 million after ransomware attack (source)
- UK health services call-handling vendor faces $7.7M fine over 2022 ransomware attack (source)
- McLaren hospitals disruption linked to INC ransomware attack (source)
- Six ransomware gangs behind over 50% of 2024 attacks (source)
- Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks (source)
- CISA warns of Jenkins RCE bug exploited in ransomware attacks (source)
- CISA Warns of Critical Jenkins Vulnerability Exploited in Ransomware Attacks (source)
- Most Ransomware Attacks Occur When Security Staff Are Asleep, Study Finds (source)
- Detecting AWS Account Compromise: Key Indicators in CloudTrail Logs for Stolen API Keys (source)