Ransomware gangs and supply chain vulnerabilities highlight risks

Law enforcement fights back. A new OT/IoT security trends report from Nozomi Networks Labs finds that while ransomware and Ransomware as a Service (RaaS) attacks continued to dominate cybercriminal activity in the second half of 2021, there was a slight uptick in state-sponsored actions as global tensions rise. Critical infrastructure…

Read More

RAMP increases influence

Indications that the Russian-language ransomware forum is warming to English and Mandarin-speaking threat actors.  There has been an increase in recent weeks of Mandarin and Chinese-speaking threat actors on RAMP as well as other illicit communities across the deep and dark web. There are indications that the Russian-language ransomware forum…

Read More

Threat of new ransomware models

Top emerging risk facing organisations. The threat of “new ransomware models” was the top concern facing executives in the third quarter of 2021, according to Gartner, Inc.’s latest Emerging Risks Monitor Report. Concerns about ransomware topped pandemic-related concerns, including supply chain disruptions, according to the survey of 294 senior executives across…

Read More

Singapore cyber landscape dominated by ransomware and phishing activities

9,080 cases handled by CSA’s SingCERT in 2020, marking second consecutive year of increase. The Cyber Security Agency of Singapore (CSA) released its Singapore Cyber Landscape (SCL) 2020 publication today, revealing an increase in cyber threats such as ransomware and online scams in 2020. CSA’s SingCERT (Singapore Computer Emergency Response…

Read More

APAC organisations willing to pay ransomware attackers

Ransomware continue to top the list of cyberattacks. Almost half (44 per cent) of APAC (excluding Japan) respondents who participated in the IDC Security Services Global Incident Readiness Survey indicated the willingness to pay the ransom in hopes of retrieving affected files, either internally or through insurance payout. While the…

Read More

Kaseya offers patch for security flaw that led to ransomware

Mitigates ongoing risk to organisations of compromise through this activity. The Australian Cyber Security Centre (ACSC) has issued a “high alert” to organisations to patch their Kaseya VSA platform, which has just become available. In early July 2021, the Cybersecurity Infrastructure Security Agency (CISA) of the United States and the…

Read More

Victims penetrated by phishing had conducted anti-phishing training

Failure of traditional defences in preventing attacks Traditional ransomware defences are failing, with 54 per cent of all victims having anti-phishing training and 49 per cent having perimeter defences in place at the time of attack, according to a recently released report by Cloudian. Citing this and other findings from…

Read More