In this report, they review malicious activity SophosLabs analyzed and protected customers against last year and use the findings to paint a picture for 2017.

In this quarterly threats report, they highlight three Key Topics: In the lead story, they analyze the recent WannaCry and Petya attacks, the perpetrators’ likely motives, and the business impact. The second Key Topic departs from their usual threat analysis stories. Because threat hunting is becoming increasingly important, in this story they offer detailed advice and recommendations for using certain types of indicators of compromise when hunting for threats. In the final Key Topic, they explore script-based malware—why it is used, how authors obfuscate scripts, how it propagates, and its growth in popularity.

This is a fun little infographic that provides information on the top threats of 2017.

This report seeks to identify key components toward a framework to cyber risk modeling and qualifying and quantifying known vulnerabilities in defenses, while providing macro-systemic guidance.

This document presents the definition, category, means, and examples of the underground network industry, as well as protection measures.

This report concerns itself with the standards and practices related to credit and debit card payment options.

This report uses the impact of the Mirai botnet, to help stakeholders prevent future incidents by addressing the lack of security-by-design in the Internet-of-things and in the Internet itself.

This report from October 2016 takes a look at the Mirai botnet, VULNS, breach responses, and some new security initiatives.

This guide provides an overview of connected or IoT medical devices, their benefits and risks, real life use cases and best practice security guidelines.

The main objective of the document is to provide a brief introduction to cloud ERP security. The targeted audience of this document includes IT and management professionals who oversee the business IT assets of their respective organizations.

This E-book discusses the importance of securing software.

This is a threat advisory for SkyDemon Mobile Apps & Website.

This is a quarterly report that looks at the current cubery security threats from each quarter.

While there are many security concerns in the cloud, this report focuses on 12 specifically related to the shared, on-demand nature of cloud computing. To identify the top concerns, CSA conducted a survey of industry experts to compile professional opinions on the greatest security issues within cloud computing. The Top Threats working group used these survey results alongside their expertise to craft the final 2016 report.

This report offers insight from the research and results of Rapid7’s repeated penetration testing.

This paper describes six key weaknesses that an adversary can use to undermine a plant’s operation, providing real-life threat details and mitigation options.

This report specifically talks about NotPetya.

This report takes a look at the cyber threats that took place in the 2nd Quarter of 2017. It provides a good concise look at what business sectors were most under threat.

This report recommends that since employees are the first line of defense in cyber-security issues, training employees should be top priority for CISO’s.

This annual report takes a look at the last decade of cyber security issues, including 2017, and provides some insight into the years ahead.

This report takes a look at the DDoS threats that occurred in the first quarter of 2017.