Skip to main content Microsoft Defender Microsoft Entra Microsoft Intune Microsoft Purview Microsoft Security Copilot Microsoft Sentinel View all products AI-powered cybersecurity Cloud security Data security & governance Identity & network access Privacy & risk management Security for AI Small and medium business Unified SecOps Zero Trust Pricing Services Partners Why Microsoft Security Cybersecurity awareness Customer stories Security 101 Product trials How we protect Microsoft Industry recognition Microsoft Security Insider Microsoft Digital Defense Report Security Response Center Microsoft Security Blog Microsoft Security Events Microsoft Tech Community Documentation Technical Content Library Training & certifications Compliance Program for Microsoft Cloud Microsoft Trust Center Security Engineering Portal Service Trust Portal Microsoft Secure Future Initiative Business Solutions Hub Contact Sales Start free trial Microsoft Security Azure Dynamics 365 Microsoft 365 Microsoft Teams Windows 365 Microsoft AI Azure Space Mixed reality Microsoft HoloLens Microsoft Viva Quantum computing Sustainability Education Automotive Financial services Government Healthcare Manufacturing Retail Find a partner Become a partner Partner Network Microsoft Marketplace Software companies Blog Microsoft Advertising Developer Center Documentation Events Licensing Microsoft Learn Microsoft Research View Sitemap

Ransomware

Ransomware as a service ecosystems make it easier for attackers of any skill to launch effective attacks. Learn how these threats workโ€”and how to detect, contain, and recover from them.

Refine Results

Filtered by

Clear All
  • ransomware

Refine results

Sort By
Content Type
Research (52)
News (0)
Industry trends (0)
Events (0)
Best practices (0)
Topic
Threat intelligence (53)
Incident response (6)
Endpoint security (2)
Threat trends (1)
Identity and access management (1)
Email security (1)
AI and agents (1)
Actionable threat insights (1)
Zero Trust (0)
Small and medium business (0)
SIEM and XDR (0)
Security operations (0)
Security management (0)
Secure remote work (0)
Risk management (0)
Privacy (0)
Office of the CISO (0)
Network security (0)
Multifactor authentication (0)
MISA (0)
Microsoft Secure Future Initiative (0)
Internet of Things (IoT) security (0)
Information protection and governance (0)
Device management (0)
Detection and protection success stories (0)
Defending against advanced tactics (0)
Data security (0)
Data protection (0)
Compliance (0)
Cloud security (0)
Built-in security (0)
Analyst reports (0)
Threat intelligence
Ransomware (53)
Threat actors (18)
Cyberattacker techniques, tools, and infrastructure (13)
Cybercrime (9)
Vulnerabilities and exploits (8)
Social engineering and phishing (6)
Cloud threats (2)
Mobile threats (1)
Influence operations (1)
Supply chain attacks (0)
IoT and OT threats (0)
Business email compromise (0)
AI threats (0)
Products and services
Microsoft Defender (19)
Microsoft Defender for Endpoint (17)
Microsoft Defender XDR (10)
Microsoft Defender Threat Intelligence (6)
Microsoft Defender for Identity (5)
Microsoft Defender for Cloud Apps (4)
Microsoft Defender Vulnerability Management (3)
Microsoft Defender for Cloud (2)
Microsoft Defender External Attack Surface Management (1)
Microsoft Defender for Office 365 (0)
Microsoft Defender for IoT (0)
Microsoft Defender for Business (0)
Microsoft Sentinel (6)
Microsoft Security Experts (3)
Microsoft Incident Response (2)
Microsoft Defender Experts for Hunting (2)
Microsoft Defender Experts for XDR (0)
Microsoft Security Services for Enterprise (0)
Microsoft Security Copilot (0)
Microsoft Purview (0)
Microsoft Purview Insider Risk Management (0)
Microsoft Purview Information Protection (0)
Microsoft Purview eDiscovery (0)
Microsoft Purview Data Loss Prevention (0)
Microsoft Purview Data Lifecycle Management (0)
Microsoft Purview Compliance Manager (0)
Microsoft Purview Communication Compliance (0)
Microsoft Purview Audit (0)
Microsoft Priva (0)
Microsoft Priva Subject Rights Requests (0)
Microsoft Priva Risk Management (0)
Microsoft Intune (0)
Microsoft Entra Agent ID (0)
Microsoft Entra (0)
Microsoft Entra Workload ID (0)
Microsoft Entra Verified ID (0)
Microsoft Entra Private Access (0)
Microsoft Entra Internet Access (0)
Microsoft Entra ID Protection (0)
Microsoft Entra ID Governance (0)
Microsoft Entra ID (0)
Microsoft Entra External ID (0)
Publish date

  • Simplify endpoint management with Microsoft Intune

    Microsoft Intune is a cloud-based unified endpoint management platform that empowers IT to manage, assess, and protect apps and devices.

    Learn more
  • Photo of rusty metal materials
    • 16 min read

    Hive ransomware gets upgrades in Rust

    With its latest variant carrying several major upgrades, Hive proves it’s one of the fastest evolving ransomware payload, exemplifying the continuously changing ransomware ecosystem.
  • Photo of Microsoft Cyber Defense Operations Center with the word "Protect" in the foreground.
    • 7 min read

    Improving AI-based defenses to disrupt human-operated ransomware

    To disrupt human-operated ransomware attacks as early as possible, we enhanced the AI-based protections in Microsoft Defender for Endpoint with a range of specialized machine learning techniques that swiftly identify and block malicious files, processes, or behavior observed during active attacks.
  • CISO (chief information security officer) collaborating in a security operations center.
    • 15 min read

    The many lives of BlackCat ransomware

    The use of an unconventional programming language, multiple target devices and possible entry points, and affiliation with prolific threat activity groups have made the BlackCat ransomware a prevalent threat and a prime example of the growing ransomware-as-a-service (RaaS) gig economy.
  • Photo of person typing into a keyboard and looking at a monitor on a desk
    • 12 min read

    ‘Ice phishing’ on the blockchain

    Our recent analysis of a phishing attack connected to the blockchain reaffirms the durability of threats like social engineering, as well as the need for security fundamentals to be built into related future systems and frameworks.
    • 8 min read

    AI-driven adaptive protection against human-operated ransomware

    We developed a cloud-based machine learning system that, when queried by a device, intelligently predicts if it is at risk, then automatically issues a more aggressive blocking verdict to protect the device, thwarting an attacker’s next steps.
  • Female developer coding her workspace in an enterprise office, using Visual Studio on a multi-monitor set up.
    • 9 min read

    A guide to combatting human-operated ransomware: Part 2

    In this post, we will tackle the risks of human-operated ransomware and detail DART’s security recommendations for tactical containment actions and post-incident activities in the event of an attack.
  • Black female developer wearing headphones; coding at her PC workspace in an enterprise office, using Visual Studio on a multi-monitor set up.
    • 7 min read

    A guide to combatting human-operated ransomware: Part 1

    As human-operated ransomware is on the rise, Microsoft’s Detection and Response Team (DART) shares how they investigate these attacks and what to consider when faced with a similar event in your organization.
Load More

Get started with Microsoft Security

Protect your people, data, and infrastructure with AI-powered, end-to-end security from Microsoft.

Learn how

Connect with us on social

Surface Pro Surface Laptop Surface Laptop Studio 2 Copilot for organizations Copilot for personal use AI in Windows Explore Microsoft products Windows 11 apps Account profile Download Center Microsoft Store support Returns Order tracking Certified Refurbished Microsoft Store Promise Flexible Payments Microsoft in education Devices for education Microsoft Teams for Education Microsoft 365 Education How to buy for your school Educator training and development Deals for students and parents AI for education
Microsoft AI Microsoft Security Dynamics 365 Microsoft 365 Microsoft Power Platform Microsoft Teams Microsoft 365 Copilot Small Business Azure Microsoft Developer Microsoft Learn Support for AI marketplace apps Microsoft Tech Community Microsoft Marketplace Software companies Visual Studio Careers About Microsoft Company news Privacy at Microsoft Investors Diversity and inclusion Accessibility Sustainability
English (United States)
Your Privacy Choices Opt-Out Icon Your Privacy Choices
Consumer Health Privacy Sitemap Contact Microsoft Privacy Manage cookies Terms of use Trademarks Safety & eco Recycling About our ads