The FBI contacted LS-ISAO with urgent information on the threat actor Luna Moth, also called Silent Ransom Group or UNC3753. This actor is targeting law firms using social engineering calls and phishing emails to gain remote access to devices. Read more about the notification

Check out this new, free, assessment tool: Major breaches, cyber incidents and service disruptions are increasingly originating from third parties. In fact, a recent report indicated 30% of breaches are now due vendors and suppliers. As this attack vector grows, it’s clear that

On May 5, LS-ISAO members gathered in New York for a community workshop held at Debevoise & Plimpton LLP. The day began with a members-only TLP RED session, followed by a networking lunch. In the afternoon, PromptArmor presented on AI threats to firms, Microsoft discussed zero trust

Now available for download is the April issue of the GRF monthly newsletter. In this issue, you will find information from the FBI on the threat from Luna Moth, details of an upcoming TPRM offering that is complimentary to GRF members, and an invitation to a webinar on the 2025

Communications Disruption Tabletop Exercise June 11 & August 20, 2025 12pm ET - 4pm ET Join GRF's Business Resilience Council for a complimentary Communications Disruption Exercise, offered June 11 and August 20. The event will challenge organizations to test their resilience

LS-ISAO members, join your peers on November 5! The LS-ISAO Annual Gathering will take place on the last day of the GRF Summit on Security & Third-Party Risk, after other sessions conclude, so that members can fully attend both events. Contact Raquel Santiago with questions or

Now available for download is the May issue of the GRF monthly newsletter. In this issue, you will find info about the communications disruption tabletop exercise, an AI security webinar for LS-ISAO members, an upcoming event for the K12 sector, details of a new mentorship

Luke McNamara, Deputy Chief Analyst at Google Mandiant (part of Google Cloud), will join the GRF/BRC Members-Only, Cross-Sector Collaboration Threat Call to provide an urgent brief on critical cybersecurity threat UNC3944, also known as “Scattered Spider,” and how to proactively defend against its

Last night, EDT, after determining Iran was close to building a nuclear weapon (despite past nuclear deals and current negotiations), Israel unilaterally struck senior Iranian military officers, nuclear scientists, and nuclear sites. During the attack, Israeli special operations

Join us for the 8th Annual Summit on Security & Third-Party Risk! Donna Speckhard, Advisor to Fannie Mae, and Vernon Williams, Founding Partner at Rational Risk, will present “Enhancing Operational Resilience through Risk and Response Maturity.” Session abstract: The session

Join us for the 8th Annual Summit on Security & Third-Party Risk! Bill Kyrouz, Information Security Director at Paul, Weiss LLP, will present “Cyber Threat Intelligence: The Critical and The Practical.” Session abstract: What does a threat intelligence program look like in small

Join us for the 8th Annual Summit on Security & Third-Party Risk! Karl Bode, Senior Lead Information Security Analyst at Wells Fargo, will present “The Enterprise Impact of Third-Party Disconnect and Reconnect.” Session abstract: Third-party supply chain attacks are a primary

Join us for the 8th Annual Summit on Security & Third-Party Risk! John Anthony Smith, Founder & CSO of Fenix24, will present “Recovery Over Resistance: The New Paradigm in Cyber Defense.” Session abstract: An organization’s ability to recover data post-breach and quickly

GRF analysts recently completed the semiannual ransomware report covering the first half of 2025. The report series tracks attacks based on public sources and conversations of threat actors in closed forums. Analysts compiled data on 2,940 successful attacks. Some key findings:

Attend the Summit to hear them, and many others, and then stick around for the LS-ISAO Annual Gathering!

Join us for the 8th Annual Summit on Security & Third-Party Risk! Stripe's Morgan Binder, Head of Third Party Risk, and Gary Donoghue, Business Resilience Manager, will present “Building Resilient Foundations: Establishing TPRM Excellence.” Session abstract: Join us as we

Join us for the 8th Annual Summit on Security & Third-Party Risk! Bill Nelson, former CEO of FS-ISAC and founder of GRF, will present “25 Years of Information Sharing: Past, Present, and the Future of Collective Resilience.” Session abstract: Bill played an instrumental

LS-ISAO members, join your peers on November 5! The LS-ISAO Annual Gathering will take place on the last day of the GRF Summit on Security & Third-Party Risk, after other sessions conclude, so that members can fully attend both events. Contact Raquel Santiago with questions or

In or around the Boston area? Join LS-ISAO and Cyberhaven for dinner at Smith & Wollensky at 6pm on Thursday, September 18th. Space is limited! Those who register after the maximum capacity has been reached will be placed on a waitlist. Register here: