This report from the U.S. Securities and Exchange Commision takes a look at an apparent increase in sophistication and frequency of ransomware attacks they have observed. (more available)

In this “special edition” threat report McAfee takes a deeper dive into COVID-19 related attacks.

This report aims to focus on the potential threats that could arise in the 2020 digital environment by offering a picture of a possible future driven by the evolution of threats and technological progress. (more available)

This SANS whitepaper begins with a baseline of statistics from three of the most reliable sources of breach and malware data; then it summarizes the expert advice from the SANS instructors on the RSA panel, detailing the emerging threats security teams should look out for in 2020 and beyond— and what to do about them. (more available)

This report provides practical recommendations on how companies can best manage the threat posed by shadow IoT devices.

This report was compiled from interviews with 1,004 company leaders in order to find the effect of remote work on their companies. (more available)

This report from Kaspersky explains changes in the threat landscape for industrial automation systems for the first half of 2020. It goes in detail on the variety of malware, the main threat sources, regional differences, and more. (more available)

This quarterly threat report offers insight into the DDoS attacks that occurred in the 1st quarter of 2019.

Interpol’s Cybercrime Directorate produced this Global Assessment Report on COVID-19 related Cybercrime based on data from 194 countries and private partners to provide a comprehensive overview of the cybercrime landscape amid the pandemic. (more available)

The objective of this report is to provide nuanced insight into the ICS risk and vulnerability landscape, the challenges it poses to operational technology (OT) security practitioners, and what conclusions can be drawn from publicly available data. (more available)

Now in its sixth year, Sonatype’s State of the Software Supply Chain Report continues to examine measurable practices of secure open source software development and delivery. (more available)

Bitdefender researchers recently investigated a sophisticated APT-style cyberespionage attack targeting aninternational architectural and video production company, pointing to an advanced threat actor and a South Korean based C&C infrastructure. (more available)

A survey of 200 IT professionals on the readiness and impact of COVID-19 upon cyber security.

A review of cases handled by Kaspersky’s incident response retainer and on-demand services. Concentrated in the EU, Middle East, and Eurasian countries and in the industrial, financial, and government sectors. (more available)

A survey driven review of 25 indicators via 157 questions spanning 193 respondents. This attempts to focus on factors influencing cybersecurity strategy design and implementation on a year-over-year basis. (more available)

A survey driven review of 25 indicators via 50 questions spanning nearly 160 respondents. This attempts to focus on factors influencing cybersecurity strategy design and implementation on a year-over-year basis. (more available)

This report outlines changes in healthcare cybersecurity in 2019 as well as changes predicted to happen in 2020.

This annual report outlines expected cybersecurity trends for the coming year.

After the CARES act was passed in March of 2020, fraudsters worked towards making money off of it. This report seeks to understand all of the components of fraud happening on the dark web in relation to the CARES act. (more available)

A review of the cybersecurity job market in the UK, the nature and extent of skill gaps and shortages. A combination of surveys, qualitative research with firms, and a review of job postings. (more available)

A review of 63 events where Kivu participated in payouts of ransomware events on behalf of clients engaged via a post-incident response. (more available)