Lower Data Breach Insurance Costs with These Tips

Lower Data Breach Insurance Costs with These Tips

The proliferation of ransomware and business email compromise (BEC) cyberattacks has forced organizations to change their perception towards the current threat environment. The question is no longer “if” your business will fall victim to a threat campaign, it’s now a matter of “when.” IBM Security reported that 83% of organizations studied have had more than one data breach. While the average cost of a data breach has reached an all-time high of USD 4.35 million…

Read More

Ransomware Revolution: 4 Types of Cyber Risks in 2023

Ransomware Revolution: 4 Types of Cyber Risks in 2023

Security leaders and CISOs have been protecting their organizations from ransomware for decades, adapting with changes in technology to defend against the costly risks of stolen data or interruptions to critical systems. But adversaries always have new tricks up their sleeves and now the global community of ransomware groups seems poised for a revolution that could make them more effective, versatile, and dangerous. How will ransomware’s business model change? The kill chain employed by ransomware…

Read More

Cloud-ready and Channel-first

Cloud-ready and Channel-first

Trend Micro is a cloud security pioneer. And for over 30 years, we’ve worked hand in hand with the channel to make the digital world a safer place. So we’re delighted to receive more recognition of the value we’re adding for partners and customers with the release of the latest CRN Cloud 100 list. This comes on the heels of another great recognition as Trend Micro was recently awarded the AWS Marketplace Partner of the…

Read More

6 Ransomware Trends & Evolutions For 2023

6 Ransomware Trends & Evolutions For 2023

More than any other industry, cybersecurity is constantly changing. But the number of major paradigm shifts that transformed the world of cybersecurity in the past few years has been unprecedented, especially when it comes to combating ransomware. The costly and global threat of ransomware has evolved alongside changing technology in the past two decades. Just as threat researchers and engineers rethink their solutions when the currents of cybersecurity shift, their adversaries are always following the…

Read More

Monthly Threat Webinar Series in 2023: What to Expect

Monthly Threat Webinar Series in 2023: What to Expect

2023 will be the ninth year of doing my monthly threat webinar series that I love.  Each month I select a threat or a research report to discuss with my audience that I think can help educate them on the latest trends in the threat landscape.  Over the years, I’ve covered such threats as advanced persistent threats (APT), botnets, crypto mining, fileless, key loggers, messaging, ransomware, spyware, trojans, vulnerabilities, web threats, and zero days.  One…

Read More

Attacking The Supply Chain: Developer

Attacking The Supply Chain: Developer

In 2021, we published an entry identifying the weak parts of the supply chain security. In the face of the surge in documented attacks, the entry gave a summarized overview of how malicious actors found gaps to abuse and take advantage of for possible gains and disruptions. In this entry, we focus on one specific part of the supply chain: the developers themselves. To find a suitable attack model focusing on the developer, we must…

Read More

Ransomware Recovery Plan for 2023

Ransomware Recovery Plan for 2023

Ransomware continues to be a significant global threat for organizations in all sectors. In 2022, it accounted for 41% of breaches, with an average cost per breach of $4.5 million. While authorities have had some success cracking down on ransomware perpetrators, bad actors are expected to evolve their tactics and business models, generating new attack types and pursuing new targets such as the enterprise cloud. Since the ransomware risk is less a question of “if”…

Read More

Earth Bogle: Campaigns Target the Middle East with Geopolitical Lures

Earth Bogle: Campaigns Target the Middle East with Geopolitical Lures

Earth Bogle: Campaigns Target the Middle East with Geopolitical Lures Malware We discovered an active campaign ongoing since at least mid-2022 which uses Middle Eastern geopolitical-themed lures to distribute NjRAT (also known as Bladabindi) to infect victims across the Middle East and North Africa. By: Peter Girnus, Aliakbar Zahravi January 17, 2023 Read time:  ( words) While threat hunting, we found an active campaign using Middle Eastern geopolitical themes as a lure to target potential…

Read More

Abusing a GitHub Codespaces Feature For Malware Delivery

Abusing a GitHub Codespaces Feature For Malware Delivery

GitHub Codespaces, initially in preview for specific users, became widely available for free in November 2022. This cloud-based integrated development environment (IDE) allows developers and organizations to customize projects via configuring dev container files, easing some previous pain points in project development. We investigated the services offered by this cloud IDE and found that one of its features for code development and collaboration – sharing forwarded ports publicly – can be abused by malicious actors…

Read More

4 Cyber Insurance Requirement Predictions for 2023

4 Cyber Insurance Requirement Predictions for 2023

Download Trend Micro’s Guide to Cyber Insurance Just a decade ago, it seemed like the only requirement from cyber insurance carriers was the need for a policy; the application process was easy, and the questionnaire was simple. But as ransomware attacks grew in popularity and damage, carriers were forced to tighten the reigns to keep a balanced book. In 2020, we witnessed the cyber insurance market harden for the first time ever. Since then, carriers…

Read More
1 3 4 5 6 7 19