Under Attack? Breach Response Hotline: Call 833.997.7327


With more than 15 years’ experience in cyber counterintelligence, we have learned to approach cybersecurity differently, and more effectively, than other companies. Browse our case studies, expert insights, Ask the Expert series and more to see why so many organizations choose us to protect their systems when the worst happens.

Copy of Site PhotoPP (22)
Nuclear Research Facility Breached through VPN Vulnerability
21 June 2021
The Korean Atomic Energy Research Institute (KAERI) was attacked after threat actors exploited a VPN vulnerability. KAERI is a government-sponsored organization...
Copy of Site PhotoPP (19)
Takedown of Stolen Credentials Site, Slilpp
15 June 2021
The US Department of Justice (DOJ) completed a major takedown of an underground marketplace holding stolen login credentials in part of an international...
Copy of Site PhotoPP (17)
REvil Ransomware Attacks Nuclear Weapons Contractor
14 June 2021
REvil ransomware has been a constant threat in the ransomware landscape across the globe this year and they are not stopping. Sol Oriens, which is a subcontractor...
Copy of Site PhotoPP (16)
Avaddon Releases All Decryption Keys to BleepingComputer
11 June 2021
Avaddon ransomware group just released the decryption keys for 2,934 victims to BleepingComputer.com. This morning, BleepingComputer obtained an anonymous...
Copy of Site PhotoPP (15)
Outdated VPN Password Allowed Colonial Pipeline Breach
10 June 2021
One password was the cause for a major breach to the Colonial Pipeline. A VPN account that was no longer in use by the Colonial Pipeline company is what...
Copy of Site PhotoPP (8)
Long-Term Effects of Colonial Pipeline Ransomware Attack
10 June 2021
On Friday, May 7, the Colonial Pipeline disclosed a ransomware attack that they said forced the company to halt operations and freeze IT systems. The Colonial...
Copy of Site PhotoPP (7)
TrickBot Coder Arraigned
09 June 2021
A Latvian coder for the infamous TrickBot malware was arraigned for her role in developing the malware. Alla Witte was charged with 19 counts of various...
Copy of Site PhotoPP (6)
Evil Corp Poses as Babuk to Avoid Sanctions
09 June 2021
According to ThreatPost, the criminal group Evil Corp is trying to mask its latest activity by using previously unknown ransomware called PayloadBin, according...
Copy of Copy of Site PhotoPP
EpsilonRed, Another New Ransomware Strain
07 June 2021
According to Recorded Future, Nucleus Software Exports, an Indian company that provides lending software to banks and retail stores, has suffered a major...
Screen Shot 2021-06-04 at 10.54
SpearTip Insight on Local Ransomware Attack
04 June 2021
St. Clair County in Illinois fell victim to a ransomware attack as many services have been disrupted since last Friday. KMOV visited our Security Operations...
Copy of Site PhotoPP (5)
White House Issues National Security Advisory
03 June 2021
SpearTip's cyber experts recommend implementing endpoint detection and response tools such as our proprietary ShadowSpear® for early detection of cyber...
Site PhotoPP (48)
Prometheus and Grief Ransomware Groups Enter Threat Landscape
01 June 2021
Prometheus is a new player among the ransomware threat landscape who claims to have ties to the REvil ransomware group. After publishing leaked data from...
Site PhotoPP (47)
Lorenz Ransomware Attack Exposes Canada Post's Shipping Information
28 May 2021
Canada Post’s third-party supplier, Commport Communications was hit with a ransomware attack. 44 of Canada Post’s biggest customers had shipping information...
Site PhotoPP (44)
New Critical VMware RCE Vulnerability
27 May 2021
VMware has released patches to address critical security vulnerabilities in vCenter Servers that could be leveraged by an adversary to execute arbitrary...
Site PhotoPP (43)
Bose Ransomware Attack Exposes SSNs and Financials
26 May 2021
The leader in audio equipment, Bose, revealed they were hit with ransomware on March 7. In a letter to the New Hampshire Attorney General, they wrote they...
Site PhotoPP (42)
MountLocker Ransomware Utilizing Windows Active Directory APIs
19 May 2021
The ransomware operation that began in July 2020 as a Ransomware-as-a-Service (RaaS) is now utilizing Windows Active Directory APIs to work its way through...
Site PhotoPP (41)
Conti Operators Target Irish Healthcare
18 May 2021
According to BleepingComputer, the Conti ransomware gang failed to encrypt the systems of Ireland's Department of Health (DoH) despite breaching its network...
Site PhotoPP (38)
Social Media Accounts Compromised to Target Corporations
14 May 2021
500 million users on Facebook and LinkedIn, each, had personal identifiable information (PII) leaked onto dark web forums. On Saturday, April 4, Business...
Site PhotoPP (39)
Babuk Ransomware Announces Retirement, Attacks Keep Coming
12 May 2021
Babuk ransomware operators performed an attack on the Washington DC police department at the end of last month. After negotiations failed, Babuk eventually...
Site PhotoPP (37)
Avaddon Threatens DDoS, Doesn't Follow Through
11 May 2021
According to BleepingComputer, the Federal Bureau of Investigation (FBI) and the Australian Cyber Security Centre (ACSC) are warning of an ongoing Avaddon...
1 2 3 4 5 11

Total Economic Impact™ Of SpearTip ShadowSpear