Tag

Threat Actors

Learn about the individuals and groups behind cyberattacks, including nation-state hackers, cybercriminal organizations, hacktivists, and insider threats. These articles analyze motivations, tactics, and real-world examples to help you understand who poses risks to your digital assets.

posts

SQL Injection

SQL Injection Explained: The Attack That Won't Die

In 2023, the MOVEit Transfer vulnerability — a SQL injection flaw — led to the compromise of over 2,600 organizations and exposed data on more than 77 million individuals. One vulnerability. One injection point. Billions in damage. And here's what should keep you up at night: SQL injection has

Carl B. Johnson Jul 14, 2019 7 min read
Medusa Ransomware

Medusa Ransomware Gang Phishing Campaigns: What to Know

In March 2025, CISA and the FBI issued a joint advisory warning that the Medusa ransomware gang had compromised over 300 organizations across critical infrastructure sectors — healthcare, education, legal, insurance, and manufacturing. The attack vector wasn't some exotic zero-day exploit. It was phishing. Specifically, carefully crafted Medusa ransomware

Carl B. Johnson Jul 04, 2019 6 min read
What Is Cybersecurity

What Is Cybersecurity? A Practitioner's Real-World Guide

The Question Everyone Asks After the Breach In 2023, MGM Resorts lost an estimated $100 million after a threat actor called Scattered Spider social-engineered its way past the help desk with a single phone call. The attackers didn't exploit some exotic zero-day vulnerability. They called IT, pretended to

Carl B. Johnson Feb 22, 2019 7 min read
Cybersecurity Definition

Cybersecurity Definition: What It Really Means in 2026

The Breach That Rewrote the Cybersecurity Definition for Everyone In 2023, MGM Resorts lost an estimated $100 million after a social engineering attack that started with a single phone call to their help desk. The threat actor didn't exploit a zero-day vulnerability. They didn't brute-force a

Carl B. Johnson Feb 14, 2019 6 min read