Topic: dwell time
-
Noisy Ransomware Uncovered a Long-Term Espionage Operation
A ransomware group's disruptive attack on two Russian companies inadvertently exposed a long-running, sophisticated cyber espionage operation, highlighting how a visible breach can mask a more insidious threat. The espionage group, QuietCrabs, used a stealthy multi-stage attack with unique malwar...
Read More » -
Industrial Ransomware Attacks Surge: A Critical Threat
Ransomware groups are increasingly targeting industrial infrastructure, exploiting weaknesses in operational technology (OT) to disrupt physical processes in sectors like manufacturing, energy, and transportation. Attackers commonly gain initial access by abusing legitimate credentials through re...
Read More » -
Encrypted Backups: Vulnerable in the AI Ransomware Era
AI-driven ransomware now systematically targets and compromises backup repositories, undermining the core assumption that a clean, restorable copy of data exists. The automation and stealth provided by AI allow attacks to operate at unprecedented scale, with malware often dwelling undetected to m...
Read More » -
Ransomware Strikes Most After Hours
Attackers strategically time their most damaging actions, like ransomware encryption and data theft, for outside standard business hours when defenses are weakest, occurring in 88% and 79% of incidents respectively. Identity theft, through stolen credentials or phishing, is the primary entry poin...
Read More » -
Substack Confirms Data Breach Exposing User Information
Substack experienced a security breach where an unauthorized party accessed limited user data, including email addresses and phone numbers, in October 2025, but the company only detected and disclosed it in February. The company confirmed that no financial information or passwords were compromise...
Read More »