In 2024, ransomware groups claimed responsibility for 5,461 successful ransomware attacks on organizations worldwide, according to new Comparitech research released this week. Of those, 1,204 attacks were confirmed by the targeted organizations. The rest were claimed by ransomware groups on their data leak sites, but have not been acknowledged by the targets, Comparitech said.
Across the 1,204 confirmed attacks, 195.4 million records were breached (and counting). These figures for 2024 are lower than those recorded in 2023 (1,474 attacks affecting 261.5 million records), but with many reports coming through months (and, in some cases, years) after the attack, Comparitech expects the 2024 figures to rise.
Check out the full report here.
Now, here's today's MSSP update. Drop me a line at [email protected] if you have news to share or want to say hi!
Today's MSSP Update
1. SC Media liveblogs TikTok hearing: The U.S. Supreme Court’s upcoming hearing on TikTok is a critical event for cybersecurity and data privacy professionals, especially for CISOs. The case involves national security concerns, data sovereignty, and the implications of foreign-owned platforms operating in the United States. Its outcome could set legal precedents that impact CISO responsibilities across industries. Join SC Media this Friday at 9:45 ET (Jan. 10) to follow the live U.S. Supreme Court hearing where TikTok's case will be heard. Our liveblog will offer real-time analysis and insights into the case and possible impact of the Supreme Court ruling. Follow along with SC Media and you can also listen in via the U.S. Supreme Court's live oral argument page.
2. Cohesity expands CERT services: AI data security firm Cohesity has expanded the Cohesity Cyber Event Response Team (CERT) service it provides to include partnerships with leading incident response (IR) vendors. Cohesity CERT now includes partnerships with IR vendors such as Palo Alto Networks Unit 42, Arctic Wolf, Sophos, Fenix24, and Semperis, the company said. This helps speed investigations and enable customers to recover from incidents faster.
3. Beyond Identity launches channel program: Secure IAM solutions platform Beyond Identity this week launched a new channel program and has appointed Joel Vinocur as Senior Director of Channels. The new global channel program will drive partner growth, open new revenue streams, and offer high rewards through a three-tier structure, the company said.
4. Flashpoint names new president: Threat intelligence provider Flashpoint has named David Lemon as its new president. Lemon joins Flashpoint from Archer Integrated Risk Management, where he helped the company grow from a small startup to a market leader. He has held numerous roles, most recently as Chief Revenue Officer, and has extensive experience and expertise in building high-performing teams, scaling operations, navigating competitive markets, and fostering excellence. Congratulations!
5. New Banshee Stealer variant: Check Point researchers discovered increasingly covert attacks exfiltrating macOS devices' sensitive data. These attacks came via an updated variant of the Banshee Stealer malware through the integration of the Apple XProtect antivirus tool's string encryption, SC Media reports. The researchers noted mounting risks against macOS systems, which were previously thought to be more secure than other operating systems.
