Media Coverage

Around 18 Ransomware vulnerabilities are not being detected by popular scanners, according to the latest Ransomware Spotlight Report published by Cyber Security Works.

13 new vulnerabilities have become associated with Ransomware in the past two quarters, and 10 out of 13 vulnerabilities have critical severity ratings. Over 49% of these vulnerabilities are trending as attackers are actively interested in them.

In the latest Ransomware Index Report Q2-Q3 2022, published today, identifies which vulnerabilities lead to ransomware attacks and how quickly undetected ransomware attackers work to take control of an entire organization.

A new report from Ivanti, Cyber Security Works and Cyware found that ransomware has exploded since 2019, increased by nearly 470%. Ransomware groups are growing in volume and sophistication, with groups leveraging 35 vulnerabilities in the first three quarters of 2022.

Ransomware and other cyberattacks have been used in a variety of ways throughout the year, underscoring the attackers’ growing technological sophistication and the threat to businesses throughout the globe.

Ransomware descended from the tool used in the Colonial Pipeline attack in 2021 has been leveraging new tools, tactics, and procedures. What does this evolving threat mean for its potential targets?

Cyber Security Works, an IT risk management company and partner agency of the U.S. Department of Homeland Security, recently conducted an assessment of an entire state’s public education system, analyzing the security posture across 180 school districts and charter schools.

While he’d never call it official business advice, Jim A. Garcia can offer an important tip to protect against cybersecurity threats. “Whatever you think you are doing, and wherever you think you are [in terms of security], they are much smarter than you,” the executive director of the Associated Contractors of New Mexico said of hackers, malicious actors and others seeking to wreak havoc online.

The Los Angeles Unified School District (LAUSD) suffered a cyber attack over the Labor Day holiday weekend, causing “significant disruption” to its digital infrastructure.

Criminal cyber groups have made it abundantly clear that there is no type of organization they will not target–the more vulnerable they are, the easier it will be to victimize. Unfortunately for us, the organizations most at risk are often public institutions.

How software patching can protect you, your customers and your organization.

Going back to school in a pandemic after a long summer is frenetic enough without a ransomware attack disrupting educators’ best-laid plans. The Los Angeles Unified School District avoided just such a disruption after it discovered a ransomware incident Saturday night, September 3, 2022, just days before schools were set to open after the U.S. Labor Day holiday.

A relative newcomer to the ransomware scene, the BlackCat group quickly gained notoriety and may be associated with other APT groups like Conti and DarkSide.

Describing the Labor Day weekend ransomware attack and response at Los Angeles Unified School District, Superintendent Alberto M. Carvalho, during a Tuesday press conference, referred to the events as “unprecedented.”

Middle East region’s first enterprise B2B marketplace, AmiViz today announced that the company has signed a partnership with Cyber Security Works (CSW), a leading platform and services provider of predictive, AI-powered Attack Surface and Vulnerability Management solutions.

The percentage of organizations hit with ransomware attacks jumped to 66% in 2021, representing a 29% year-over-year increase. As attacks become more complex and adversaries become more capable of deploying ransomware at scale, organizations have gotten better at dealing with the aftermath—but they’re still struggling to prevent attacks in the first place.

The news was officially made public by Creos’ parent company Encevo Group late last month after the BlackCat ransomware group claimed to have successfully targeted the Luxembourg-based energy company. While the energy supply to customers remains uninterrupted, the ransomware gang still has 150 GB of Creos data and is threatening to publish it online.

An analysis by Cyber SecurityWorks uncovered 624 vulnerabilities that cybercriminals could exploit to target healthcare facilities.

“The federal government’s investments should help government agencies establish their security posture through proactive penetration testing and ongoing vulnerability management. Enterprises must repair the vulnerabilities that threat groups and attackers exploit in order to prevent catastrophe. To truly safeguard their organization from potential cyberattacks, leaders must enhance their cybersecurity visibility of known and unknowable assets, validate more frequently, and look for early warning capabilities as the world’s cybersecurity issues grow.”

Understand your attack surface — Your attack surface is how a hacker sees your organization from the outside and includes details from the deep and dark webs. You need to continuously scan your known and unknown assets to identify any exposures, APIs, expired certificates, vulnerabilities in your technology stack, data leakage, open ports / protocols / services, non-production systems exposed to the public, assets potentially exposed to ransomware and much more.

Cyber Security Works (CSW) reported 22 new vulnerabilities associated with ransomware in the first quarter, a 7.6% spike since January, and the time window to patch before vulnerabilities are exploited is getting shorter.

The Conti ransomware gang was associated with exploiting the most vulnerabilities — 19 of the 22 new ones. BlackCat, LockBit, and AvosLocker exploited the rest.

It is no secret that 2021 saw an increase in cyberattacks all around the globe; specifically in critical infrastructure organizations. In October of that year, The U.S. Cybersecurity and Infrastructure Security Agency issued Alert AA21-287 in response to cyberattacks targeting the financial, gas, food and transportation sectors. The advisory was released to draw attention to infrastructure vulnerability and the facilities being targeted by hostile cyber activity.

New threat research from Cyber Security Works (CSW) has revealed a 7.6% increase in ransomware vulnerabilities since the publication of the Ransomware Spotlight Report in January 2022.

New threat research from Cyber Security Works (CSW) has revealed a 7.6% increase in ransomware vulnerabilities since the publication of the Ransomware Spotlight Report in January 2022.

Security researchers are warning that external remote access services continue to be the main vector for ransomware gangs to breach company networks but there’s a notable uptick in exploiting vulnerabilities.

Q1 2022 Ransomware Report Reveals 7.6% Increase in Vulnerabilities Tied to Ransomware and Alarming Surge in Activity by Conti Ransomware Group. he report also revealed a 7.5% increase in APT groups associated with ransomware, 6.8% increase in actively exploited and trending vulnerabilities, and 2.5% increase in ransomware families.

New threat research from Cyber Security Works (CSW) has revealed a 7.6% increase in ransomware vulnerabilities since the publication of the Ransomware Spotlight Report in January 2022.

Ransomware groups are continually going after old vulnerabilities and tried-and-true attack methods to exploit victims.

The first quarter of 2022 has seen a 7.6 percent increase in the number of vulnerabilities tied to ransomware, with 22 new ones discovered.

Today marks the one-year anniversary of the Colonial Pipeline ransomware attack, one of the biggest cyber attacks in recent history, where a threat actor named DarkSide used a single compromised password to gain access to the US’s largest pipeline operator’s internal systems.

The Ransomware Spotlight Year-End Report from Ivanti, conducted in partnership with Cyber Security Works and Cyware, found that there is now a total of 157 ransomware families – an increase of 32 from the previous year.

Leaked chats between Lapsus$ hackers revealed that the gang breached T-Mobile multiple times in March and copied thousands of source code repositories.

The Ransomware Spotlight 2022 report is co-published by 3 players in the cybersecurity world: CSW, Cyware and Ivanti. It annually addresses ransomware threats. The latest trends on the subject, the weaknesses identified in the programs to the latest ways of proceeding to fraudulently enter an Information System (IS), everything is reported there.

Women’s History Month is celebrated in March to illuminate the unique experiences women go through. Check out CSW’s Chief Financial Officer, Andrea Edmonds talk about her journey.

March is Women’s History Month, a time when women around the world are to be celebrated for their contributions to history, culture and society. However, while we’ve come a long way, women still struggle to receive the accolades, recognition, and opportunities that they deserve – particularly in the tech industry. In honor of Women’s History Month, several technology leaders have shared what this means to them.

The chat logs show that Conti indeed suffered disruption when the US NSA and FBI took action against the gang’s infrastructure, that Conti turned to a target list of US healthcare organizations as it reestablished itself, and that the gang was confident it wouldn’t be interfered with by Russian authorities.

Cyber Security Works (CSW), recently acquired CYR3CON IP to give CSW a set of ‘early warning’ vulnerability and threat intelligence capabilities. CSW acquired the new company’s technology to leverage powerful artificial intelligence and dark web mining capabilities to accurately predict how weaponizable vulnerabilities will detonate in the wild and in customer environments.

After relocating its headquarters to Albuquerque from India, Cyber Security Works Inc. is boosting its capabilities — and workforce — with the acquisition of CYR3CON IP.

Cyber Security Works (CSW), the leading platform and services provider of predictive, AI-powered Attack Surface and Vulnerability Management solutions, recently acquired an organization to give CSW a robust set of ‘early warning’ vulnerability and threat intelligence capabilities to continue the build-out of its unified threat and vulnerability management platform. The CYR3CON IP was originally developed with grants from Arizona State University (ASU) LightWorks and NEPTUNE, the U.S. Navy’s Office of Naval Research.

Cyber Security Works (CSW) recently acquired an organization to give CSW a robust set of ‘early warning’ vulnerability and threat intelligence capabilities to continue the build-out of its unified threat and vulnerability management platform. The CYR3CON IP was originally developed with grants from Arizona State University (ASU) LightWorks and NEPTUNE, the U.S. Navy’s Office of Naval Research.

Cyber Security Works (CSW), an MSSP and attack surface and vulnerability management solutions provider, has acquired threat management intellectual property developed by CYR3CON. Financial terms of the deal were not disclosed.

War is hell, and attacks can come quickly and out of nowhere, as the Conti ransomware gang has learned. Only days after making a public pledge of support for the Russian government as it invades Ukraine, the group has experienced a data leak of tens of thousands of its internal chat messages.

March 8 marks International Women’s Day, with this year’s theme being #BreakTheBias. Whether unconscious or not, bias makes it difficult for women to move ahead in the workforce, and it is up to everyone to level the playing field.

Ransomware is getting worse, but Daniel Spicer, chief security officer at Ivanti, offers a checklist for choosing defense solutions to meet the challenge.

The year began with companies attempting to clean up after major exploitation of the critical Log4j vulnerability, a recap of 2021’s ransomware activity, and a new crop of security patches.

Kitchenware company Meyer Corp. revealed it suffered a data breach. The ransomware attack targeted company data, including names, addresses, ethnicity, date of birth, gender, immigration status and mor

Kitchenware company Meyer Corp. US recently reported that it suffered a breach targeting a wide array of data such as name, address, ethnicity, date of birth, gender, immigration status and more. Though Meyer did not disclose what form of ransomware was used, the Conti ransomware gang has taken credit for the attack.

The Conti gang breached the cookware giant’s network, prepping thousands of employees’ personal data for consumption by cybercrooks.

Unpatched vulnerabilities remain the most prominent attack vectors exploited by ransomware groups