"Preventing Ransomware by Fully Remediating Infostealer Attacks"

According to SpyCloud's "2024 Malware and Ransomware Defense Report," ransomware attacks often use data stolen through previous infostealer infections, emphasizing the need to remediate all malware infections thoroughly. Based on a survey of over 500 security professionals, almost a third of ransomware attacks were preceded by an infostealer attack in the past three months. In addition to credentials, infostealer malware can steal session cookies to sidestep Multi-Factor Authentication (MFA) and hijack accounts. After phishing and third-party access, SpyCloud found that session hijacking enabled by stolen cookies was the most common ransomware entry point. This article continues to discuss key findings from SpyCloud's 2024 Malware and Ransomware Defense Report.

SC Magazine reports "Preventing Ransomware by Fully Remediating Infostealer Attacks"

Submitted by grigby1

Submitted by Gregory Rigby on