Initial Access Brokers refine their ransomware-as-a-service model betanews.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from betanews.com Daily Mail and Mail on Sunday newspapers.
One of the largest cybersecurity attacks on US infrastructure devastated a fuel pipeline and cut oil supplies to much of the East Coast.
The ransomware attack on the Colonial Pipeline, the US s largest fuel pipeline, took the company offline and could see petrol prices rise if the situation is not resolved in the next few days.
The hacker group responsible, DarkSide, believed to be based in Russia, issued an apology on Monday, saying its goal was not in creating problems for society but to make money .
But the disruption has become a geopolitical issue. President Joe Biden said there was no evidence “so far” that the Russian government had any involvement in the hack. But he said Russia “has some responsibility” to deal with ransomware attacks that occur from its soil.
Cyber Extortion Thriving Thanks to Accellion FTA Hits
May 20, 2021
May 3, 2021
Compliance
euroinfosec) • April 27, 2021
Average and median ransom payments per quarter, based on thousands of cases investigated (Source: Coveware)
The zero-day attacks against Accellion File Transfer Appliance users have rewritten the rules of the cyber extortion game, adding a new supply chain trick to ransomware gangs arsenal that they re sure to repeat.
Proof of success comes in the form of illicit revenue. In the first quarter of this year, the average cyber extortion payoff reached $220,298, a 43% increase from the previous quarter, ransomware incident response firm Coveware reports, based on thousands of cases it s helped investigate.
Just when it seemed that 2020 couldn’t get any weirder, news broke that Russian state-sponsored hackers had spent much of the year exploiting vulnerabilities in SolarWinds‘ widely used Orion IT management software to hack into major federal agencies and corporations.
Suddenly the year wasn’t about the massive shift toward remote work caused by the COVID-19 pandemic, so in a way the incident had a feeling of normalcy by returning the focus to timeless IT security issues – with the caveat that cyber attacks typically don’t lead to international incidents.
2021 cybersecurity predictions
Those two issues – remote work and a nation-state cyber attack – sum up our IT security outlook for 2021: Even as things return to normal, they will be forever changed. A few of the items here are holdovers from our 2020 list: Nation-state attacks, zero trust, cloud buckets and ransomware, for example, and we expect those to loom even larger in 2021.