ENISA Report: Threat Landscape for Ransomware Attacks

Anna Delaney • August 15, 2022

ENISA’s new "Threat Landscape for Ransomware Attacks" report analyzes 623 ransomware incidents in the EU, U.K. and U.S. from 2021 to 2022. ENISA cybersecurity officer Ifigeneia Lella shares how attacks have evolved and how 95% of reported incidents lack key data about how the breaches occurred.

Governance & Risk Management

Ukraine, US Sign Cybersecurity Pact

Latest

Critical Infrastructure Security

Comedy of Errors: Ransomware Group Extorts Wrong Victim

Mathew J. Schwartz • August 16, 2022

The Cl0p ransomware group has been attempting to extort Thames Water, a public utility in England. Just one problem: the group attacked an entirely different water provider. Through ineptitude or outright lying, this isn't the first time that a ransomware group has claimed the wrong victim

Finance & Banking

Building Resilience in a Multi-Cloud Environment

Anna Delaney • August 15, 2022

A well-managed multi-cloud strategy "is a sensible approach" because it allows organizations to move different workloads between providers, but it gets a "bit more complicated when you start thinking about workload portability," says Lee Newcombe, security director, Capgemini U.K.

Anti-Money Laundering (AML)

Suspected Tornado Cash Developer Accused of Money Laundering

Mathew J. Schwartz • August 15, 2022

Dutch police have arrested a man accused of working as a developer for Tornado Cash. "He is suspected of involvement in concealing criminal financial flows and facilitating money laundering through the mixing of cryptocurrencies via the decentralized Ethereum mixing service," Dutch authorities say.

3rd Party Risk Management

Latest US Health Data Breaches Follow Worrisome Trends

Marianne Kolbasuk McGee • August 15, 2022

Some 60 breaches affecting about 2.5 million individuals were added in July to the federal tally of major health data breaches. A vast majority of 2022 breaches continue to be linked to large hacking incidents and ransomware demands - with 40% tied to outside vendors.

Cyberwarfare / Nation-State Attacks

Why Being Prepared Is the Key to Preventing Cyberattacks

Steve King • August 15, 2022

Hybrid war includes cyberattacks, critical infrastructure attacks and efforts to get information. Victoria Beckman, director of Microsoft's Digital Crimes Unit in the Americas, says Ukraine used a national cybersecurity strategy to withstand such attacks from Russia and so can other countries.

Biometrics

Lax Security Courts Liability, Says US CFPB

David Perera • August 12, 2022

The U.S. Consumer Financial Protection Bureau is warning lenders they can be liable for data breaches for causing consumers "substantial injury." To avoid liability, the bureau recommends that banks implement multifactor authentication and especially Web Authentication.

Endpoint Security

Feds Warn Healthcare Entities of 'Evernote' Phishing Scheme

Marianne Kolbasuk McGee • August 12, 2022

A "secure message-themed" phishing campaign targeting healthcare providers aims to lure recipients to an Evernote notepad website in an attempt by hackers to harvest security credentials, federal authorities warn, saying the scheme puts entities at risk for potential data security compromises.

Government

Lawmakers Request 'Urgent' Cyber Briefing With HHS Leaders

Marianne Kolbasuk McGee • August 12, 2022

The co-chairs of Congress' Cyberspace Solarium Commission request an "urgent briefing" with Biden administration officials to discuss the state of cybersecurity in the healthcare and public health sector and call for actions to address rising cyberthreats.

Anti-Money Laundering (AML)

ISMG Editors: Analyzing the Twilio Breach

Anna Delaney • August 12, 2022

In the latest weekly update, four ISMG editors discuss the breach of customer engagement platform Twilio, a cyberattack on the U.K.'s NHS that has reignited concerns about supply chain security in the healthcare sector, and the U.S. Treasury clamping down on shady cryptocurrency mixers.

Cybercrime

Ransomware Groups Refine Shakedown and Monetization Models

Mathew J. Schwartz • August 12, 2022

Ransomware-wielding attackers continue to seek new ways to maximize profits with minimal effort. Top tactics spotted recently by experts include continuing to partner with initial access brokers and botnet operators and testing new monetization models, such as "mediation as a service."

Governance & Risk Management

Zero Trust: Incorporate Critical, Systems, Design Thinking

Tom Field • August 12, 2022

Enterprises spend a lot of time on what zero trust is, but too little time on design thinking - and why cybersecurity solutions need that element baked in from the start. Brian Barnier and Prachee Kale of ThinkDesignCyber and CyberTheory Institute give an overview of their zero trust strategy.

Cybercrime

Cyber Insurance: A Helping Hand But Premiums Are Rising

Jeremy Kirk • August 12, 2022

Cyber insurance can defray costs associated with data breaches and ransomware attacks. But Kelly Butler of the advisory firm Marsh & McLennan Companies says insurers are tightening their requirements for policies due to rising costs associated with increasingly severe incidents.