Resources

According to a report by the Identity Theft Resource Center, the government and education sectors accounted for 12.3% of all reported data breaches in 2020. Increased connectivity has benefitted state and local government and education (SLED) since its inception, increasing efficiency, information sharing, and more. As the internet has developed and threat actors become more savvy, it has introduced more risk to state and local organizations. The dark web, also known as the hidden internet, is a part of the internet that is not indexed by traditional search engines. It is estimated that the dark web is 500 times larger than the surface web, making it a haven for illegal activities such as fraud and cyber crime.

Cyber criminals are looking for ways to steal pharmaceutical intellectual property. Third party cyber risk and insider threat are two ways that threat actors can infiltrate pharma companies to cause damage. In our report, you will:

GroupSense has been negotiating with threat actors on the underbelly of the internet for years, so we are uniquely suited to assist in ransomware negotiations. In this brand-new version of our Ransomware Negotiation Guide, we teamed up with our partners at Mindful Negotiating to bring you a step-by-step guide to ransomware response. 

Cybercriminals are opportunistic by nature. Repeatable methods like ransomware and business email compromise (BEC) attacks are a quick and easy way for criminals to make money. Fortunately, there are steps your organization can take to prevent these attacks from happening that focus on simple, proactive methods of cybersecurity. Download our guide to get actionable advice today.

The Russo-Ukrainian War: A Year in Review
One year after Russia's full-scale invasion of Ukraine, we are providing this report summarizing what we have learned while observing the cyber dynamics of this latest stage in the Russo-Ukrainian War.

While experts expected Russia to unleash its full arsenal of cyber capabilities, much of the publicly-known cyber activity associated with the war has come from hacktivist activity among ideologically-motivated actors who have taken the side of Russia or Ukraine. 

The report summarizes what we have learned in the past year, highlights the evolution of pro-Russian hacktivism as a significant factor in the cyber realm and provides recommendations for all organizations to consider as this conflict wages on. 

With threats coming from APTs, state-sponsored actors, hacktivists, and cyber criminals, critical infrastructure organizations need to be prepared to defend their assets from all angles. In this report, GroupSense covers the top threats that critical infrastructure agencies are facing and recommended mitigations.

Modern warfare isn't just fought with boots on the ground. Throughout Russia's invasion of Ukraine, there have been volleys of cyber attacks designed to make each side weaker. As different countries declare allegiances, state agencies and other critical infrastructure organizations are in the crossfire. GroupSense analysts have spent the duration of the invasion closely monitoring the changing cyber landscape.

Ransomware is a big business. It has been prominent since the mid-2000s, with Ransomware-as-a-Service emerging in 2016. A company impacted by ransomware could suffer devastating financial and reputational losses. We've compiled information on the ransomware market and what you need to know.

2021 was another pivotal year for ransomware attacks. Cybercrime was expected to hit $6 trillion and is expected to grow by 15% annually during the next five years. 

GroupSense has been negotiating with threat actors on the underbelly of the internet for years, so we are uniquely suited to assist in ransomware negotiations. We often get the question, what does a ransomware negotiator do? A ransomware negotiator acts as a mediator between a ransomware victim and the ransomware operator. This role is an important one, providing an objective view of the situation, empowering the victim with enough information to make an informed business decision on whether to pay a ransom, and providing a layer of operational security between the victim and the ransomware operator.