We talk a lot about the growing complexity of hacking groups and how their tools and tactics continue to evolve. One such evolution is the ongoing specialization that runs rampant throughout the black hat community – especially when it comes to ransomware.
The rise of initial access brokers, affiliate programs, spoofing domain creators, dark web communities, and more are fueling ransomware-as-a-service groups and posing new cybersecurity challenges.
And while numerous reports detail the rise in ransomware attacks and the escalating amounts being paid in seeking a reprieve from denial of service, data extortion, and supply chain hacks, one recent finding really stood out. In their annual State of Ransomware Report, Blackfog stated that manufacturing had the highest number of undisclosed ransomware attacks, when compared to all other industries.
So, as tough as we know the ransomware challenge is – it’s actually a bit worse than we acknowledge because of the growing number of attacks that go unreported. Fortunately, we have an army of highly skilled individuals working to combat these threats. And that includes our guest for today’s episode – Fortra’s senior manager of domain and dark web monitoring solutions, Nick Oram. Watch/listen as we discuss:
- The surge of new ransomware tactics and groups, like RansomHub.
- The origins and continued growth of Initial Access Brokers (IABs) within the ransomware community.
- How affiliate programs are helping both RaaS and IAB groups increase their rate of successful attacks.
- Why dark web monitoring might be more important than ever for manufacturers.
- The ongoing “we adapt”, “they adapt” dynamic.
- How to better educate the workforce and shift from a “blame and shame” response to phishing and other types of attacks that leverage human error.
To catch up on past episodes, you can go to Manufacturing.net, IEN.com or MBTmag.com. You can also check Security Breach out wherever you get your podcasts, including Apple, Amazon and Overcast. And if you have a cybersecurity story or topic that you’d like to have us explore on Security Breach, you can reach me at [email protected].