Monday, April 5, 2021

One Ransomware Attack Can Cost You Twice as Much as Before

One Ransomware Attack Can Cost You Twice as Much as Before  

A tight global economy has everyone looking for new revenue streams – including cybercriminals who are doubling down on ransomware threats by doubling the price tag to get your data and systems back. 

In a double extortion ransomware attack, cybercriminals make money two ways by asking victims to pay twice: once for a decryption code to unlock their impacted systems or data, and a separate fee to not have the encrypted data copied by the gang Practitioners of this tactic were responsible for more than 50% of all ransomware attacks in 2020.

This week’s record-setting ransomware incident at Acer proves that the cost of a ransomware incident is only going up – cybercriminals presented Acer with a $50,000,00 ransom demand to hand over the key to decrypt their data. The risk is going up too. Researchers noted a 50% increase in the daily average of ransomware attacks between Q1 2020 and Q4 2020

Protecting your business from ransomware starts with protecting it from phishing. Regular security awareness training that emphasizes phishing prevention is a key part of any defensive strategy against ransomware. An estimated 65% of ransomware attacks are delivered via phishing. 

Phishing resistance training solution BullPhish ID has just been updated to include more customizable training campaigns and user-friendly features that make training painless for everyone. Launch a new campaign this week to start building your company’s ransomware protection.


Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com/texas 877.860.5831
By at No comments:

Double Extortion Ransomware is the Gift That Keeps On Giving – to Cybercriminals

Double Extortion Ransomware is the Gift That Keeps On Giving – to Cybercriminals

Double extortion ransomware having another moment in the sun as cybercriminals double down on their attacks to double their profits. In this devastating style of attack, cybercriminals aim to get paid twice – once for the usual decryption code to unlock systems and data and a separate fee to not have the encrypted data copied by the gang.

This tactic was in vogue before when it first emerged in late 2019 and spread across the cybercrime landscape. It’s reemerged as a favorite of major gangs including REvil, DoppelPaymer and Clop. Even cybercriminals are working a little harder in this economy, leading to this style of attack trending upward again as cybercriminals look for new ways to expand their revenue streams. Practitioners of double extortion ransomware were responsible for more than 50% of all ransomware attacks in 2020.    



Ransomware Continues to Rule the Roost

Ransomware risks show no signs of slowing down, and they’re costing companies a fortune. The average ransomware payment rose 33% in 2020 over 2019, to $111,605. The worldwide cumulative cost of ransomware doubled last year as well, from an estimated $11.5 billion in 2019 to $20 billion in 2020. Insurers felt the pinch too – cyber insurance claims for ransomware attacks increased  41% in the first half of 2020 alone

All of this translates into huge financial danger for companies in every sector. Healthcare led the pack –  An estimated 560 US healthcare targets alone were impacted by ransomware in 2020. More than 45% of cyberattacks against healthcare targets in 2020 were ransomware, but no industry was spared. Manufacturers experienced one-quarter of all ransomware attacks, professional services companies clocked in at 17% and government entities were hit with 13%.

Protection from Ransomware is Priceless

Phishing is the primary delivery source for ransomware, making phishing resistance and defense the cornerstone of a strategy to protect businesses from disasters. There is plenty of room for growth in the area as well – 62% of businesses do not do enough cybersecurity awareness and phishing resistance training.

The new BullPhish ID has been freshly updated and upgraded to provide a smooth, efficient and effective training experience for everyone involved. You’ll love:

  • Customizable, intuitive training portals that make the whole process of taking and conducting training a breeze!
  • Customizable training emails including attachments enabling you to create better simulations of real threats in your industry
  • Simple, clear reporting to gauge the effectiveness of training and find out who needs more help
  • Over 80 plug-and=play phishing simulation kits are ready to go, enabling you to start training immediately
  • 4 new kits added every month to reflect new lures and keep staffers on their toes including COVID-19 threats
  • Video lessons, online testing, and training in 8 languages

We’re here to help you find the perfect combination of solutions to protect your clients and your business from ransomware through the ID Agent Digital Risk Protection Platform and IT Complete. Book a meeting with one of our solutions experts now and let’s explore the possibilities.


Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com/texas 877.860.5831
By at No comments:

Phishing Isn’t Slowing Down

Phishing Isn’t Slowing Down

This is definitely not going to be the year when phishing threats decrease. Cybercrime growth will continue to be explosive as the pandemic’s impact continues to squeeze the world economy. In Q4 2020, phishing threats were up 220% over Q42019, and similar growth is expected when Q1 2021 numbers come in. Don’t put off getting your customers in a strong position to overcome the challenges brought by this tidal wave of phishing. By taking the initiative to get ahead of the risk, they’ll be in a better place to ride out phishing trends throughout the year. 

Book a demo of the ID Agent digital risk protection platform now!


Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com/texas 877.860.5831
By at No comments:

Impersonation Schemes Can Snag Even Savvy Employees

Impersonation Schemes Can Snag Even Savvy Employees 

As phishing threats continue to rise, a disturbing trend that has grown throughout the pandemic continues to impact businesses around the world. Smart cybercriminals are pulling off audacious impersonation schemes, and protecting your business from them needs to be a priority.

Cybercriminals have been using the circumstances of the global pandemic to their advantage. Workers received 72% more emails in 2020 than the year before, and that means many more opportunities for phishing – over 35% of all phishing emails sent in 2020 had a COVID-19 twist. 

Bad actors used emails purporting to be from organizations like the World Health Organization, the New York Department of Labor, Oxford University and myriad other seemingly “trustworthy” authorities to socially engineer pandemic-rattled workers into downloading spurious attachments and clicking poisoned links.

Those are the kinds of phishing messages that can snag anyone, even employees who are normally wary about such things. That’s why it’s essential that phishing resistance training is a central feature of your cybersecurity plan. Studies show that security awareness training like that can reduce your risk of a cybersecurity incident by up to 70% as long as it’s regularly refreshed (typically quarterly).

BullPhish ID is an ideal training solution for businesses of any size. Our content is updated regularly, providing fresh exercises reflecting the latest threats for workers every month. Training materials can also be quickly customized to better reflect industry-specific dangers. Access it all through a user-friendly training portal that makes the whole experience painless.. 

Don’t wait until someone’s been fooled by a phishing email. Strengthen your company’s defense against clever, socially-engineered phishing attacks with regular phishing resistance and security awareness training. You’ll gain dividends today and tomorrow.


Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com/texas 877.860.5831
By at No comments:

Escalating Phishing Threats Are Still Capitalizing on Pandemic Pressure and Remote Workers

Escalating Phishing Threats Are Still Capitalizing on Pandemic Pressure and Remote Workers 

Many things in the world have slowed down or are still stopped as we navigate the back end of the global COVID-19 pandemic. But one thing is having a major growth spurt with no end in sight: phishing. Across the board, phishing threats are the top cybersecurity menace that businesses face today and that threat meter is only going up. 

Phishing increased 42% overall in 2020, while some categories and attack types like ransomware experienced triple-digit growth. That constantly growing menace rose 148% in March 2020 alone. Phishing threats took their biggest jump in Q2 2020, escalating an eye-popping 660% according to Google. Even in Q4 2020, the increase was lower but still epic: phishing was up more than 220%. Experts agree that phishing will continue to dominate the threat lanscape in 2021.

Cybercriminals are still milking the public’s thirst for information about COVID-19. In the early months of lockdowns and public health emergencies, bad actors grew adept at using pandemic lures and other crafty, socially-engineered tricks to take advantage of stress and anxiety, especially when it comes to targeting remote workers. More than 30% of the email sent overall in 2020 was a pandemic-themed phishing attempt, and a whopping 72% of all phishing email was COVID-19 themed. 



One reason that phishing is up is because email volume is up. Workers handled 72% more emails in 2020 than the year before, and email is the primary communication tool of the majority of businesses these days, although messaging is catching up. That gives cybercriminals many more chances to snag a tired, stressed, or distracted remote worker. 

Impersonation and business email compromise scams are also reaching new heights. Business email compromise (BEC) attacks doubled, and impersonation scams, especially phishing that aped a major corporation or “trusted” source took off – more than half of all phishing “websites” in 2020 imitated one of those organizations. In 2020, BEC costs increased rapidly, from $54,000 in Q1 2020 to $80,183 in Q2

Smart cybercriminals know that they’ll have a far easier time duping an unsuspecting worker into clicking a link than downloading an attachment, and they planned their attacks accordingly. While an estimated 71% of spear-phishing attacks included malicious URLs, only 30% of BEC attacks included a link. Drilling down, 20% of phishing URLs were WordPress sites, 72% of phishing websites used genuine HTTPS certificates, and 100% of drop zones employed TLS encryption. 



Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com/texas 877.860.5831
By at No comments:

Kick Your Unhealthy Relationship with Supply Chain & Third-Party Risk to the Curb

Kick Your Unhealthy Relationship with Supply Chain & Third-Party Risk to the Curb

The interconnected relationships between businesses and suppliers, vendors and partners has been in the spotlight as cybersecurity peril mushrooms from giant companies like Microsoft and Solarwinds. So how can you protect your company and your clients from the added risk that comes with doing business in today’s world? Find great ways to reduce third-party and supply chain risk in our new eBook “Breaking Up with Third Party and Supply Chain Risk”. 

You’ll discover:

  • Examples of third-party and supply chain data breaches
  • A clear walkthrough of how supply chain and third-party risk endanger businesses
  • Solutions that mitigate the chance of disaster from those risks

Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com/texas 877.860.5831
By at No comments:

Tuesday, March 30, 2021

BBB Newsletter: CEO Bruce Steinfeld featured in Expert Blog for UpCity

CONTACT US
UpCity Looks to Bit by Bit CEO Bruce Steinfeld for IT Managed Services Advice in Expert Blog

Thanks to our customers, we're earning accolades as one of the Top Managed Service Providers in the United States on UpCity.

And, thanks to [...]

 
Security Awareness Training: 5 Benefits That Will Make You Happy You Did It

In age of COVID, cyber attacks continue to unleash at every turn, compromising your business and exposing vulnerable points in every

[...]

 
 
 
Spanning Webinar Recap | Backing Up Your Office 365 & Salesforce

If you're running Office 365 or Salesforce, there are nasty threats out there that could cause you to lose data and cripple your organization. [...]

 
Facebook
Twitter
LinkedIn
 
 

Questions?
Get in touch with us today!   
 CONTACT US   SUPPORT CENTER

 
FacebookTwitterLinkedIn
Bit by bit helps client networks run smooth and secure.. visit our website at www.bitxbit.com/texas 877.860.5831
By at No comments:
Subscribe to: Posts (Atom)