Business Email Compromise Shouldn’t Be the Cost of Doing Business

The FBI last week published a public service announcement updating its warnings about the continuing threat of business email compromise (BEC, also called CEO fraud). The problem has reached shocking proportions: between June of 2016 and December of 2021, the Bureau counted
Read More

Small and Medium Businesses Account for Nearly Half of all Ransomware Victim Organizations

As ransomware costs increase, along with the effectiveness and use of extortions, smaller businesses are paying the price, according to new data from Webroot. Small businesses seem to be easy prey for ransomware gangs, according to Webroot’s just-released BrightCloud Threat
Read More

A Lack of Employee Cyber Hygiene is the Next Big Threat

A new report suggests that everything from endpoints, to passwords, to training, to security policies, to a lack of awareness is all contributing to a much higher risk of cyberattack. Employee cyber risk is a multifaceted issue that revolves a lot around cyber hygiene, according
Read More

Backups Become the Focus as Three-Fourths of Organizations Experienced Ransomware Attacks

New data puts the spotlight on how most organizations are unable to completely recover their data after a ransomware attack, making the case for better data protection for improved incident response. It appears that organizations simply aren’t prepared in the face of a ransomware
Read More

Half of All Organizations Hit by Ransomware Experience Productivity Loss

According to new data, ransomware is expected to be a larger and more likely threat in the next year, making the impacts felt today very relevant as the impetus for improved cybersecurity. According to new data from Bitglass in their 2022 Ransomware & Malware Report, you
Read More

Organizations Worldwide Experience Over 722 Million Attacks in the Last 30 Days

Analysis of data collected by Internet and security services vendor Akamai shows an unimaginable number of cyberattacks, demonstrating how frequently these attacks are happening. If you’ve been paying attention at all the last few years, you’re already keenly aware that
Read More

FBI: Cyber Attacks Target Organizations Involved in Mergers and Acquisitions

A new notification from the FBI warns organizations of attacks at the perfect time when organizations are spending money, new people are being introduced, and operations are in flux. Threat actors like nothing more than a dash of chaos when it comes to timing their attacks. If
Read More

Business Email Compromise-as-a-Service Emerges as Attempted Fraud Soars to as High as $6 Million

BEC scammers set their sights on payoffs in the millions of dollars, and are following the path of their ransomware counterparts by evolving services while organizations struggle to keep up. It shouldn’t come as a surprise (if you’ve been following the evolution of cybercrime)
Read More

One in Three IT Organizations Have No Cyberattack Incident Response Plan

Despite increases in ransomware attacks, ransom amounts and how often payments are made, new data shows organizations aren’t responding in kind and putting response plans in place. As expected, we’re continuing to see data corroboration around the rise in ransomware attacks this
Read More

Probability of Experiencing a Vendor Email Compromise Attack Increases 96%

Vendor Email Compromise requires first taking control of a strategic email account within the victim organizations. According to new data, cybercriminals are getting really good at this. Vendor Email Compromise – an attack where an email account is actually taken over rather than
Read More

Spear Phishing Becomes a Bigger Problem as the Average Organization is Targeted 700 Times a Year

With threat actors honing their trickery skills to craft the perfect email used to fool a would-be victim recipient, new data shows cybercriminals are stepping up their game on a number of fronts. Spear phishing only works when the misleading email content is relevant to the
Read More

77% of Organizations Are Unable to Access Systems or Networks Post-Ransomware Attack

The fallout after a ransomware attack is more devastating than previously thought. New data spells out what you should really expect after being hit with ransomware. When we consider what happens after a ransomware attack, we normally think about remediation steps –
Read More

Ransomware Attacks from Within Russia So Impactful, U.S. Government Says it Will Take Action if Russia Won’t

In light of recent ransomware attacks, the White House Press Secretary Jen Psaki stated this week that the Russian government needs to address ransomware groups stemming from Russia. The cybersecurity sector has long known that a majority of ransomware gangs reside within Russia.
Read More

Bad Cyber Hygiene: 54% Of Employees Admit They Use the Same Passwords Across Multiple Work Accounts

It appears that working from home causes employees to develop some very bad cyber habits, demonstrating that cybersecurity hygiene went from bad to worse mid-pandemic. We’d like to think we’re just as secure while working from home. But a new survey from 2FA vendor Yubico of
Read More

Do Ransomware Gangs Restore Data, Even After They’re Paid?

Only 8% of ransomware victims get all of their data back after paying the ransom, according to researchers at Sophos. The researchers found that, on average, victims who pay the ransom recover about 65% of their data, while 29% of respondents said they recovered less than 50% of
Read More