Digital Forensics and Incident Response: Incident Response Tools and Techniques for Effective Cyber Threat Response, 3rd Edition by Gerard Johansen
Build your organization's cyber defense system by effectively applying digital forensics, incident management, and investigation techniques to real-world cyber threats.
"The Wall Street Journal recently reported that #23andMe once had a market cap of $6 billion. That has dropped to $350 million. "
Here we go again: how do we figure out how much of 23andMe's woes is due to a #databreach and their pretty deplorable #incidentresponse that blamed their users, and how much is due to other financial issues involving their investments?
What happens when attackers can SEO their fake application to the first page of search results, alerts fire along the way, and you have a customer and secops team that are top notch!
"Based on 481 ransomware attacks from the Dutch police and a Dutch incident response party, we arrive at a number of key insights: Insurance led to a 2.8x higher ransom amount paid, without affecting the frequency of payments. Data exfiltration led to a 5.5 times higher ransom amount paid, without affecting the frequency of payments. Organizations with recoverable backups were 27.4 times less likely to pay the ransom compared to victims without recoverable backups.
That was a LockBit3.0 incident that LockBit listed on their leak site in April 2023. I don't have any notes on whether LockBit ever leaked it all or not. Maybe someone else knows?
Take a look into what sets the Bishop Fox approach to tabletop exercises in #RedTeaming apart. Senior Red Team Consultant @alethe shares how our team focuses on these highly beneficial exercises as building blocks for stronger #security programs versus mandatory compliance tasks. https://bfx.social/3H7Ech2
This press release provides a useful reminder to entities as to why they SHOULD contact the FBI if they are the victim of a cyberattack. The FBI may have a decryptor that they can give you that is not publicly known.
The York Region District School Board, which covers an area stretching from Toronto in the south to Lake Simcoe in the north, with a student population of over 128,000, said in a statement this week that late on Nov. 8, the IT department became aware of a cyber incident.
Medusa added the Hinsdale School District to their leak site with ample proof of claims and a price tag of $200k to delete all the data or buy it all. A countdown clock gives the district 10 days.