Extortion News and Insights | Microsoft Security Blog

Adult male working from home at kitchen table with headphones on and talking with his hands.

Oct 11, 2021

6 min read

How cyberattacks are changing according to new Microsoft Digital Defense Report

Get the latest expert insights on human-operated ransomware, phishing attacks, malware, and more to get ahead of these threats before they begin.

Female developer coding her workspace in an enterprise office, using Visual Studio on a multi-monitor set up.

Sep 27, 2021

9 min read

A guide to combatting human-operated ransomware: Part 2

In this post, we will tackle the risks of human-operated ransomware and detail DART’s security recommendations for tactical containment actions and post-incident activities in the event of an attack.

Sep 21, 2021

15 min read

Catching the big fish: Analyzing a large-scale phishing-as-a-service operation

With over 100 available phishing templates that mimic known brands and services, the BulletProofLink operation is responsible for many of the phishing campaigns that impact enterprises today.

Black female developer wearing headphones; coding at her PC workspace in an enterprise office, using Visual Studio on a multi-monitor set up.

Sep 20, 2021

7 min read

A guide to combatting human-operated ransomware: Part 1

As human-operated ransomware is on the rise, Microsoft’s Detection and Response Team (DART) shares how they investigate these attacks and what to consider when faced with a similar event in your organization.

Adult male mobile professional on the go with ASUS ZenBook. Working at kitchen table with glass of water.

May 26, 2021

9 min read

Becoming resilient by understanding cybersecurity risks: Part 4—navigating current threats

Learn how your infrastructure and security operations can make you vulnerable to insider threats, ransomware, weaponized AI, and more.

May 20, 2021

19 min read

Phorpiex morphs: How a longstanding botnet persists and thrives in the current threat environment

Phorpiex, an enduring botnet known for extortion campaigns and for using old-fashioned worms, began diversifying its infrastructure in recent years to become more resilient and to deliver more dangerous payloads. Today, the Phorphiex botnet continues to maintain a large network of bots and generates wide-ranging malicious activities. These activities have expanded to include cryptocurrency mining.

Contextual image of woman touching screen while working on Black Surface Laptop2 inside at desk

Oct 13, 2020

4 min read

Becoming resilient by understanding cybersecurity risks: Part 1

All risks have to be viewed through the lens of the business or organization. While information on cybersecurity risks is plentiful, you can’t prioritize or manage any risk until the impact (and likelihood) to your organization is understood and quantified.