DOJ takes down Phobos Ransomware as a Service, Navigating Zero Trust and AI, Moving to PQC cryptography, No More Secrets!

By John Bruggeman, virtual Chief Information Security Officer

DOJ takes down Phobos Ransomware as a Service

Major developments are happening in the world of cybercrime! The suspected administrator for the Phobos Ransomware-as-a-Service (RaaS) group has been arrested and extradited to the U.S. to face charges.

Evgenii Ptitsyn, a Russian national and alleged administrator of the Phobos ransomware operation, was extradited from South Korea and is facing cybercrime charges in the United States.

The Department of Justice (DOJ) has accused Phobos of conducting a long-running RaaS operation, using ransomware derived from the Crysis ransomware family and widely distributed through many affiliates. Between May 2024 and November 2024, Phobos activity accounted for roughly 11% of all submissions to the ID Ransomware service. The Justice Department has alleged Phobos breached over 1,000 public and private entities in the United States and worldwide, with ransom payments worth more than $16 million.

We’ll be keeping an eye on this case to see cybercrime justice in action!

More details can be found here.

Navigating zero trust and AI

Do you want to strengthen your security strategy? We can help! I have been talking about zero trust for three years now, and it is still a relevant strategy for reducing risk and lowering cyber insurance costs. Our latest guide on zero trust and AI-powered endpoint tools will help you continue evolving your security efforts to meet new threats. Read more here.

What can you do?

Do you have a plan to move to a zero-trust cybersecurity framework? Do you have questions about how AI can help reduce your risk?

If you have any questions about zero trust or AI, reach out to me or anyone on the Cybersecurity team, and we can join a call with you to answer those questions.

Moving to PQC cryptography

My latest article for Forbes Technology Council has been published. In this piece, I discuss the ROI of moving to post-quantum computing cryptography (PQC).

The three key reasons to move to PQC cryptography are:

1. Future-proofing your data security

There are two NIST-approved quantum computing resistant ciphers, CRYSTALS-Kyber and CRYSTALS-Dilithium. You can adopt these ciphers now and ensure your data remains secure against future quantum threats. Doing this will safeguard your intellectual property, customer data, and operational integrity.

2. Ensuring regulatory compliance

More than a decade ago, NIST recognized the need for cryptography that can resist quantum computers. Regulatory bodies are aware of quantum threats, and compliance requirements will change. PQC cryptography will be mandated. Companies that adopt PQC ciphers faster can better ensure compliance and position their companies more successfully than slower-moving competition.

3. Building customer trust

It is a sad fact that we live in an era where data breaches are commonplace. Demonstrating a proactive approach to cybersecurity can mean significantly enhancing your customers’ trust. By adopting PQC ciphers, you signal to your customers and partners that you are committed to protecting their data with the most advanced security measures available.

What can you do?

Are you aware of the need to move to quantum computing-resistant cryptography?

It might seem like a tall order, but in the past three years I have talked with over 100 companies, and only one of them had a plan for implementing PQC cryptography. I am happy to jump on a call and talk with any of you to explain how moving to PQC is the right thing to start planning now.

You can read the whole article here.

No More Secrets Podcast has new episodes!

In case you haven’t heard, the “No More Secrets” podcast has new episodes available for download, and the content is fun and easy to follow.

No More Secrets Podcast Series - Apple Podcasts

About the author

John Bruggeman is a veteran technologist, CTO, and CISO with nearly 30 years of experience building and running enterprise IT and shepherding information security programs toward maturity. He helps companies, boards, and C-level committees improve and develop their cybersecurity programs, create risk registers, and implement compliance controls using industry-standard frameworks like CIS, NIST, and ISO