It has been quite the year for cybersecurity with cyberattacks making the headlines most (if not all) weeks. With all the media coverage and incidents, it created an opportunity for a lot of information sharing and community conversation. Our blog library was full this year of insights into current attacks and events, tips to protect your organization and advice on how to approach things like getting accepted for cyber insurance.
As we look back on 2021, we wanted to share our top blogs. Many of you found these helpful and we are looking forward to even more blogs and helpful content in 2022!
Applying for Cyber Insurance: How To Get Accepted
Cyber insurance policy prices are skyrocketing due to the increase in ransomware cases over the past year. With that higher price comes less coverage. While Pondurance can help with digital forensics and incident response, we recommend preventive measures to address questions that cyber insurance carriers have added to their underwriting questionnaires. This blog covers why companies are denied cyber insurance, how they can be better prepared for the application process, and what to do to prepare for the years to come.
3 Factors Contributing to Cyberattacks and Recommendations To Protect Your Organization
The growing threat of ransomware brings up an unsettling conundrum for the modern enterprise. On the one hand, organizations are buying more security tools and have heightened awareness of cyberattacks and the threats posed by increasingly sophisticated and resourceful bad actors or cybercriminals. On the other hand, increasingly sophisticated and resourceful cybercriminals seemingly exploit weaknesses and install ransomware at will — profiting immensely in the process.
In reviewing and assessing these incidents, it’s clear that there are underlying common factors that set the table for these attacks. This blog shares three of the factors, along with recommendations about what organizations can do in response.
New Ransomware Variant: .hello ransomware
On January 13, 2021, our security analysts discovered a brand new ransomware variant: .hello ransomware. The actor uses a Microsoft SharePoint 2019 vulnerability (CVE-2019-0604) to enter the victims’ network. From there, the threat actor leverages Cobalt Strike to pivot to the domain controller and launch ransomware attacks.
Read this blog to learn more about the identified threat and Microsoft’s recommendations for patching back in January.