Research

Third-Party Data Breaches in the Energy Sector

The Increase in Ransomware Attacks on Local Governments

What makes organizations in the public sector vulnerable to ransomware?

SecurityScorecard Validation Assessment Summary

Online found SecurityScorecard’s footprinting to be very accurate. Over the course of testing Online evaluated SecurityScorecard’s data for a total of 13 unique, unrelated, and randomly selected domains and found SecurityScorecard’s attribution process to have an accuracy of 95%. The accuracy for positively attributing IP Addresses was found to be 94% while for DNS Records it was found to be 100%.

Volt Typhoon Compromises 30% of Cisco RV320/325 Devices in 37 Days

The SecurityScorecard Threat Research, Intelligence, Knowledge, and Engagement (STRIKE) Team has identified new infrastructure that appears to be linked to the threat actor group tracked as Volt Typhoon. Volt Typhoon is a state-sponsored group based in China that typically focuses on espionage and information gathering. Approximately 30% of the Cisco RV320/325 devices observed by SecurityScorecard in a 37-day period may have been compromised by Volt Typhoon.

Cyber Risk Intelligence Update: Hacktivist Involvement in Israel-Hamas War Reflects Possible Shift in Threat Actor Focus

A Deep Dive Into ALPHV/BlackCat Ransomware

Brute Force Attempts May Have Preceded Ransomware Attack on School District

A detailed analysis of the Menorah malware used by APT34

Ransomware Attack on Vendor Managing U.S. Government Records

BlackCat Ransomware Group Claims Attack on Healthcare Service Provider

Avoslocker Ransomware Group Targets U.S University

The Avoslocker ransomware group recently claimed responsibility for an attack against a small U.S. university.

Investigation of North Korea-Linked Indicators of Compromise (IOCs)