Dark Reading

Data Suggests It's Time to Rethink Cloud Permissions

Imagine your company's data as a mansion. Your cloud environments are the mansion's rooms, filled with valuables like customer data, IP, and confidential documents. Leaving the front door unlocked and ...
Bleeping Computer

Ransomware abuses Amazon AWS feature to encrypt S3 buckets

A new ransomware campaign encrypts Amazon S3 buckets using AWS's Server-Side Encryption with Customer Provided Keys (SSE-C) known only to the threat actor, demanding ransoms to receive the decryption ...
Security Boulevard

Lessons Learned from Top 10 Ransomware Incidents in 2025

To no surprise, ransomware continued to disrupt organizations across every sector in 2025. Although each incident looked different, most shared the same root causes: weak access controls, overly ...
Cloud Security Alliance

AWS Ends SSE-C Encryption, and a Ransomware Vector

SSE-C stands (well, stood) for “Server Side Encryption- Customer-provided keys”. It allowed you to provide an encryption key ...
Wired

Despite Catastrophic Hacks, Ransomware Payments Dropped Dramatically Last Year

For much of the past year, the trail of destruction and mayhem left behind by ransomware hackers was on full display. Digital extortion gangs paralyzed hundreds of US pharmacies and clinics through ...
Bleeping Computer

Known. Emerging. Unstoppable? Ransomware Attacks Still Evade Defenses

No, it's not new or particularly exotic, but after years of attacks, ransomware continues to rank among the most destructive threats facing global organizations today. Even with security teams pouring ...