All ransomware articles
-
ArticleCISA pilot program seeks to bolster ransomware preparedness
The Cybersecurity and Infrastructure Security Agency announced a pilot program designed to help critical infrastructure entities vulnerable to cyberattacks mitigate a ransomware incident before it occurs.
-
Article
SEC orders Blackbaud to pay $3M for misleading ransomware disclosures
Software company Blackbaud agreed to pay $3 million to the Securities and Exchange Commission to settle claims it violated securities law by failing to disclose the true scope of a ransomware attack that affected 13,000 users.
-
Article
Lessons in cybersecurity: Control the breach narrative
Recent botched data breach responses at Activision Blizzard and GoDaddy prompt timely consideration of communication best practices shared by cybersecurity experts at CW’s virtual Cyber Risk & Data Privacy Summit.
-
Article
FinCEN: U.S. banks paid $1.2B to ransomware criminals last year
Banks reported paying a record $1.2 billion to ransomware criminals in 2021, the Financial Crimes Enforcement Network announced.
-
Article
Cyber risk management lessons from Optus data breach
The Optus data breach should serve as a reminder for all organizations that cybersecurity incidents are serious business risks that are costly to make right.
-
Article
Ex-Uber security chief found guilty of obstructing FTC data breach probe
Joseph Sullivan, the former chief security officer of Uber Technologies, was found guilty of two felonies connected to allegations he covered up a massive data breach at the ridesharing company and misled federal regulators about Uber’s response.
-
Article
NetWalker hacker imprisoned 20 years for ransomware attacks
Sebastien Vachon-Desjardins, a former Canadian government employee who played part in widespread NetWalker ransomware attacks, was sentenced to 20 years in prison and ordered to forfeit the $21.5 million U.S. investigators said he received from his victims.
-
Article
U.S., Israel finalize deal on cybersecurity cooperation
The United States and Israel have finalized an agreement to work together to protect the financial sector from cybersecurity attacks, the U.S. Treasury Department announced.
-
Training
Ransomware Attack: A scenario-based immersive learning
Take this self-directed, interactive immersive study of a fictional cyber event based on real-life scenarios to deepen your understanding of the importance of crisis management planning and put you in the shoes of a compliance leader during a ransomware attack.
-
Webcast
CPE Webcast: Data security 101 for compliance teams
Compliance departments must be up to speed with emerging cybersecurity threats. This includes understanding the new technologies, processes, and procedures their organization will need to employ to ensure they don’t run afoul of the modern data privacy environment.
-
Article
AA study: Cybersecurity breach disclosures surge in 2021
The number of cybersecurity breaches disclosed by public companies in 2021 increased 44 percent while reports of ransomware attacks also surged, according to the latest Audit Analytics study.
-
Article
Colonial Pipeline names first chief information security officer
More than nine months after being targeted by a ransomware attack, Colonial Pipeline has named Adam Tice as its first chief information security officer.
-
Article
DOJ names head of crypto enforcement team
The Department of Justice named veteran prosecutor Eun Young Choi to serve as the first director of its newly created National Cryptocurrency Enforcement Team.
-
Article
Epilogue: What happened to Betsy?
The “patient zero” of fictional private utility company Vulnerable Electric’s ransomware crisis learns her fate.
-
Article
Chapter 4: Recovery and lessons learned post-ransomware attack
Whether fictional private utility company Vulnerable Electric pays the ransom or not in the aftermath of its cyber incident, the two pathways quickly splinter off in different directions with varied endings, each with important lessons to be learned.
-
Article
Chapter 3: Ransomware eradication prompts tough choice: To pay or not to pay?
No matter what, the deck is stacked against fictional private utility company Vulnerable Electric as it weighs whether to pay the $5 million ransom demanded by a cybercriminal who breached its systems. Which path do you take?
-
Article
Chapter 2, Part 2: Ransomware damage control and when to alert stakeholders
Systems at fictional private utility company Vulnerable Electric remain impacted in the aftermath of a ransomware attack, but the chief executive decides it’s time to be forthright with employees and customers.
-
Article
Chapter 2, Part 1: Containment key to ransomware defense
With Day 2 of fictional private utility company Vulnerable Electric’s ransomware crisis comes the need to grasp the extent of its situation. The cyber incident response team’s synchronized efforts are pivotal as time is of the essence.
-
Resource
White paper: The Dangerous Intersection Between OFAC and Ransomware
Read CSI’s The Dangerous Intersection Between OFAC and Ransomware white paper to understand how OFAC violations and ransomware present an amalgamated threat to all U.S. businesses, and how to address this threat in order to limit its potential for grave financial harm.
-
Article
CW case study offers 360-degree view of ransomware attack
Learn through the eyes of the C-suite at Vulnerable Electric, a fictional private utility company impacted by a significant ransomware attack, as part of Compliance Week’s third case study.
