Little Rock School District approves $250K payment in ransomware settlement

Federal agencies including the FBI discourage paying ransoms in such cyberattacks as there is no guarantee victims will recover their files. 

By Anna Merod • Dec. 19, 2022

Rackspace executives stand by ransomware response

Chief Product Officer Josh Prewitt said the company restored email access to more than three-quarters of its Hosted Exchange customers. But Rackspace officials pushed back on alleged connections to ProxyNotShell.

By David Jones • Dec. 16, 2022

Explore the Trendline➔

Top 5 stories from Cybersecurity Dive

A wave of rules, regulations and federal action is putting pressure on businesses to shore up security amid a backdrop of emboldened threat actors has a nice ring to it.

By Cybersecurity Dive staff

Rackspace blames ransomware attack on financially motivated threat actor

The cloud services firm says an investigation into the Dec. 2 ransomware attack is close to wrapping up.

By David Jones • Dec. 15, 2022

Threat actors abuse legitimate Microsoft drivers to bypass security

Researchers from Mandiant and SentinelOne say attackers have deployed malware that can allow them to get around security controls. 

By David Jones • Dec. 13, 2022

California authorities confirm cyber intrusion, LockBit claims ransomware hit

Multiple state agencies are responding to support California's Department of Finance, though officials say no state funds were compromised.

By Matt Kapko • Dec. 12, 2022

Rackspace says more than two-thirds of customers regained email access

The cloud company continued efforts to transition customers to Microsoft 365 following a Dec. 2 ransomware attack.

By David Jones • Dec. 12, 2022

Rackspace scrambles to assist customers as ransomware probe continues

Microsoft is assisting the multicloud services firm after a ransomware attack left thousands of customers unable to access emails on Exchange.

By David Jones • Dec. 8, 2022

Ransomware attacks shift beyond US borders

U.S.-based organizations remain the top target for ransomware gangs, but the scale of that misfortune is waning, according to Moody’s.

By Matt Kapko • Dec. 6, 2022

Rackspace says ransomware disrupted its Hosted Exchange business

The incident could lead to further interruptions and a loss of revenue at its Hosted Exchange business, the company warned. 

By David Jones • Dec. 6, 2022

Cuba ransomware group hitting US organizations in 5 critical sectors

The group and its affiliates have shifted tactics in 2022. Top targets include organizations in finance, government, healthcare, manufacturing and IT.

By Matt Kapko • Dec. 5, 2022

7 of this year’s biggest cybersecurity stories

From vendor evolution to the long-term effects of high-profile attacks, the cybersecurity industry is rapidly evolving. Take a look at our top stories to understand just how much has changed.

By Naomi Eide • Dec. 5, 2022

Cyber Safety Review Board to probe Lapsus$ ransomware spree

Following an inaugural review of Log4j, the board will investigate the threat actor’s prolific campaign of cyber extortion against major companies, including Uber, T-Mobile and Nvidia.

By David Jones • Dec. 2, 2022

LastPass breach fallout spreads to expose customer data

Details are scant but since the breach is a continuation from an attack on the company’s development system, “the keys to the kingdom” might be in the wrong hands, one expert said.

By Matt Kapko • Dec. 1, 2022

Cybercriminals strike understaffed organizations on weekends and holidays

Cybereason research found organizations are short-staffed on holidays and weekends, even though that's when attackers are likely to strike.

By Matt Kapko • Nov. 18, 2022

Critical infrastructure providers ask CISA to place guardrails on reporting requirements

Top companies and industry groups fear incident reporting mandates would overwhelm CISA with noise. 

By David Jones • Nov. 16, 2022

Nokia warns 5G security ‘breaches are the rule, not the exception’

A majority of 5G network operators experienced up to six cyber incidents in the past year. Defenses are especially lacking for ransomware and phishing attacks.

By Matt Kapko • Nov. 16, 2022

Mondelē​​z settlement in NotPetya case renews concerns about cyber insurance coverage

The legal dispute between the snack giant and insurer Zurich American, which lasted four years, raises further questions about how insurers cover acts of cyber war.

By David Jones • Nov. 8, 2022

Precise ransomware strikes boost threat actors’ success rate

Threat actors are amassing specialized skills and tools from a broader group of cybercriminals to target organizations with more sophisticated tactics.

By Matt Kapko • Nov. 8, 2022

No, your CEO is not texting you

Everyone wants to stay on good terms with their employer. Threat actors know this too, and they exploit this weakness accordingly. Don’t fall for it.

By Matt Kapko • Nov. 3, 2022

CommonSpirit taps new CIO with military background after cyberattack

NewYork-Presbyterian’s Daniel Barchi will take the new position starting Monday, just one month after the hospital chain suffered a high-profile ransomware attack. 

By Samantha Liss • Nov. 2, 2022

After the CommonSpirit ransomware attack: Why healthcare M&A is a ‘huge’ cybersecurity risk

The security incident comes three years after the health system’s megamerger, which potentially made it vulnerable to an attack, security experts say.

By Samantha Liss • Oct. 27, 2022

Vice Society’s ransomware playbook, queries for potential victims leaked

The group may follow similar tactics to other threat actors, but its branded extensions make it stand apart, Microsoft researchers found.

By Matt Kapko • Oct. 26, 2022

Ransomware activity persists, but lags 2021 highs

Ransomware attacks are trending upward of late but not at 2021 levels.

By Matt Kapko • Oct. 25, 2022

Cybersecurity quarterly benchmarks: Q1, 2022

Gartner Peer Insights data and opinions run the gamut on cybersecurity maturity, budgets, and initiatives.

Oct. 24, 2022

4 tips to protect IT employees from phishing attacks

No one is perfect, and that includes your IT professionals. Here's what security experts say could help mitigate human error.

By Lindsey Wilkinson • Oct. 14, 2022