Now Playing
Extortion Without Encryption, Third-Party Breach Surge & Q-Day Risk
Audio is available on Spreaker — see link below.
Ransomware gangs have abandoned encryption for silent data exfiltration — and third-party breaches have doubled to 30% in a single year. Today's briefing covers the tactics, the active Spanish enterprise campaign, AI-poisoned supply chains, and what defenders must reconfigure now.
Audio is available on Spreaker — see link below.
Ransomware gangs have quietly stopped encrypting your files. Not because they've gone soft.
Kaspersky has flagged active campaigns using this model against Spanish enterprises right now. The tactic is precise: infiltrate, exfiltrate, disappear, then extort.
Separate from the ransomware story, but connected in its implications, is where breaches are now coming from. Third-party involvement in enterprise breaches has doubled in a single year.
The layer that makes this worse is AI. Adversaries are now using machine learning to target vendor logistics and manufacturing systems directly.
There's also a longer-term compounding risk that's worth naming. Post-quantum cryptography vulnerabilities create what some analysts call a harvest-now, decrypt-later problem.
The near-term watchpoints are specific. For the ransomware shift: detection tooling needs to prioritize data movement anomalies, not encryption events.
Chapter summary auto-generated from the verified script. Listen to the full episode for the complete content.