Week in review: QNAP NAS ransomware, threat modeling, the realities of working in cybersecurity - Help Net Security

Week in review: QNAP NAS ransomware, threat modeling, the realities of working in cybersecurity - Help Net Security

Here’s an overview of some of last week’s most interesting news, articles and interviews:


Attackers can teach you to defend your organization against phishingUsing the kill chain to assess how an attacker would approach your organization makes it easier to understand which steps, at a minimum, would need to be taken by an arbitrary attacker to succeed in a phishing attack against your company.


QNAP NAS devices under ransomware attackQNAP NAS device owners are once again under attack by ransomware operators, who are exploiting a recently fixed vulnerability to lock data on vulnerable devices by using the 7-Zip open-source file archiver utility.


61% of organizations impacted by ransomware in 2020Enterprises faced unprecedented cybersecurity risk in 2020 from increasing attack volume, the pandemic-driven digital transformation of work, and generally deficient cyber preparedness and training, a Mimecast survey reveals.


Q1 2021 ransomware trends: Most attacks involved threat to leak stolen dataThe vast majority of ransomware attacks now include the theft of corporate data, Coveware says, but victims of data exfiltration extortion have very little to gain by paying a cyber criminal.


48 recommendations for a global fight against ransomwareThe Institute for Security and Technology’s Ransomware Task Force (RTF) has released a comprehensive strategic framework to help worldwide organizations fight against ransomware and will be delivering it to the U.S. President’s team.


What is threat modeling and why should you care?While there is not one exac ..