Security News
The Ragnar Locker ransomware gang just put its victims on notice: Call for help - be it from investigators, the FBI or ransomware negotiators - and the punishment will be the publication of encrypted files. So I am conducting and advising on ransomware negotiations and working with clients that have suffered ransomware attacks, crafting our strategy and then negotiating with the actual ransomware groups.
"Experts have embraced the merging of the two frameworks. John Bambenek, threat intelligence advisor at IT service management company Netenrich, told Threatpost that as it is, ATT&CK hasn't really shown security team what needs to be done,"besides buy more security products. "One of the holy grails of security is 'Are we doing a good job at X?'" he said during a recent visit to the Threatpost podcast.
![S3 Ep48: Cryptographic bugs, cryptocurrency nightmares, and lots of phishing [Podcast]](/static/build/img/news/s3-ep48-cryptographic-bugs-cryptocurrency-nightmares-and-lots-of-phishing-podcast-small.jpg)
Oh! No! The Windows desktop that got so big it imploded. LISTEN NOW. Click-and-drag on the soundwaves below to skip to any point in the podcast.
So what are these unexpected places besides supply chain attacks? Kaseya, a lot of people would argue that's not a supply chain attack.
![S3 Ep47: Daylight robbery, spaghetti trouble, and mousetastic superpowers [Podcast]](/static/build/img/news/s3-ep47-daylight-robbery-spaghetti-trouble-and-mousetastic-superpowers-podcast-small.jpg)
LISTEN NOW. Click-and-drag on the soundwaves below to skip to any point in the podcast. WHERE TO FIND THE PODCAST ONLINE. You can listen to us on Soundcloud, Apple Podcasts, Google Podcasts, Spotify, Stitcher, Overcast and anywhere that good podcasts are found.
Year-over-year, ransomware spiked more than tenfold in the first half of 2021, researchers report. According to Fortinet's latest semiannual FortiGuard Labs Global Threat Landscape Report, released on Monday, the telecommunications sector was the most heavily targeted, followed by government, managed security service providers, automotive, and manufacturing sectors.
You know, another fresh look at patching to make sure that there isn't, you know, as little porous of a situation as there can be. Jennifer Bisceglie: To me, I think to your point, is it different servers, different containers? There's lots of different technologies that, you know, can separate these things.
![S3 Ep46: Copyright scams, video snooping and Grand Theft Crypto [Podcast]](/static/build/img/news/s3-ep46-copyright-scams-video-snooping-and-grand-theft-crypto-podcast-small.jpg)
An IoT bug that could be exploited for video snooping and more. A hacker steals $600m and then makes a song and dance out of giving it back.
Bart McDonough: I think when people hear the term financial services? I think that the lay person thinks of banking, and they're right to be concerned about cybersecurity at banks, but candidly, those organizations are really well-equipped. So I think that right there should be a wake-up call to the regulatory bodies, certainly to the industry about the risks that are facing these kind of other financial services.
![S3 Ep45: Routers attacked, hacking tool hacked, and betrayers betrayed [Podcast]](/static/build/img/news/s3-ep45-routers-attacked-hacking-tool-hacked-and-betrayers-betrayed-podcast-small.jpg)