Learn about the individuals and groups behind cyberattacks, including nation-state hackers, cybercriminal organizations, hacktivists, and insider threats. These articles analyze motivations, tactics, and real-world examples to help you understand who poses risks to your digital assets.
posts
In March 2024, a ransomware attack on Change Healthcare — one of the largest health payment processors in the U.S. — disrupted claims processing for pharmacies and hospitals nationwide. Patients couldn't fill prescriptions. Providers couldn't get paid. A single breach paralyzed a massive chunk of American healthcare
The Ransomware Landscape Right Now Is Brutal In January 2024, the Hive ransomware group's infrastructure had barely been dismantled by the FBI before new ransomware gangs filled the vacuum. If you searched for ransomware examples hoping to understand what's coming next, the best place to start
In February 2023, the U.S. Marshals Service confirmed a major ransomware attack that compromised sensitive law enforcement data — including personally identifiable information and internal legal documents. A federal agency with dedicated security staff and government-grade infrastructure still got hit. If you're running a business without those resources,
A Ransomware Gang That Starts With Your Inbox In 2022, the Medusa ransomware gang emerged as one of the most aggressive threat actors targeting organizations through phishing campaigns. They don't kick down the front door — they walk through it with stolen credentials, harvested from carefully crafted phishing emails
In March 2022, the FBI's Internet Crime Complaint Center reported that Americans lost over $6.9 billion to cybercrime in 2021 — a 64% jump from the year before. That number makes the standard cybersecurity definition you'll find in a textbook feel almost dangerously quaint. If you&
In March 2022, the Lapsus$ group didn't crack some zero-day vulnerability to breach Okta. They bribed an employee. They socially engineered their way into a third-party support provider and pivoted from there. No malware. No exploit kit. Just a human being making a decision. That single incident put
In February 2022, Nvidia — one of the largest chip manufacturers on the planet — confirmed it was hit by a ransomware attack. The threat actor group Lapsus$ claimed they stole over a terabyte of proprietary data and began leaking employee credentials and source code. If a company with Nvidia's
In May 2021, Colonial Pipeline paid $4.4 million in ransom after a single compromised password shut down fuel delivery across the Eastern United States. Months later, meat processor JBS paid $11 million to resume operations. If you searched for ransomware examples hoping to understand what these attacks actually look
A USB Drive in a Parking Lot Changed Everything In 2020, a Tesla employee was approached by a Russian national who offered him $1 million to plant malware inside the company's Nevada Gigafactory. The FBI arrested the threat actor before the attack succeeded, but the plan hinged on
Your Credentials Are Probably Already There In April 2021, a threat actor posted a database of 533 million Facebook user records — phone numbers, full names, locations, email addresses — on a popular dark web forum. For the price of nothing. Just sitting there, searchable. So what is the dark web, exactly,
