Almost half of ransomware victims have data stolen before they can even detect an intrusion


Criminals are getting better at hiding within their victims’ infrastructure, lurking and stealing files without triggering any alarms whatsoever.

Earlier today, network detection and response experts ExtraHop released the “Global Threat Landscape Report”, based on a survey of more than 1,800 IT and security leaders worldwide. In it, it is said that roughly half (49%) of organizations that were struck by ransomware did not detect the threat until after the data was stolen.

Read more…
Source:  TechRadar


Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox


Related:

  • UK councils remain downed by cyberattack

    January 26, 2024

    Three local councils in the United Kingdom continue to experience disruption to their online services, a week after confirming a cyberattack had knocked some systems offline. The councils for Canterbury, Dover, and Thanet — all of which are based in the U.K. county of Kent and have a combined population of almost 500,000 residents — said ...

  • Kansas City Area Transit Authority hit by ransom cyber-attack, affecting communications

    January 26, 2024

    The Kansas City Area Transit Authority announced this week that is was hit by a ransom cyber-attack. The incident was reported on Tuesday, Jan. 23. KCATA said all service is operating, including fixed-route buss, Freedom and Freedom-On-Demand paratransit service. KCATA said at this time regional RideKC call centers can’t receive calls or can any KCATA landline. Read ...

  • Malicious ads for restricted messaging applications target Chinese users

    January 25, 2024

    An ongoing campaign of malicious ads has been targeting Chinese-speaking users with lures for popular messaging applications such as Telegram or LINE with the intent of dropping malware. Interestingly, software like Telegram is heavily restricted and was previously banned in China. Many Google services, including Google search, are also either restricted or heavily censored in mainland ...

  • Billion-dollar financial giant EquiLend hit by cyberattack

    January 25, 2024

    EquiLend, a global financial technology, data and analytics firm, suffered a cyberattack – possibly ransomware – that forced parts of its digital infrastructure offline. In a press release, EquiLend said that on January 22, 2024, its technicians identified a “technical issue that placed portions of our system offline.” Following an investigation, the company identified a cybersecurity ...

  • Another Phobos Ransomware Variant Launches Attack – FAUST

    January 25, 2024

    The Phobos ransomware family is a notorious group of malicious software designed to encrypt files on a victim’s computer. It emerged in 2019 and has since been involved in numerous cyber attacks. This ransomware typically appends encrypted files with a unique extension and demands a ransom payment in cryptocurrency for the decryption key. FortiGuard Labs has ...

  • Russian hackers attack Ukraine MoD resources

    January 25, 2024

    Cyber attacks by Russian government-funded groups on the resources run by the Ministry of Defense using phishing, distribution of remote code execution malware, and blocking of access to web resources have been recorded. “Last day, attacks on Ukraine’s government and commercial sectors were recorded. Also, attacks by Russia-funded hacker groups were launched on the resources of ...