Russian Espionage Group Using Ransomware in Attacks 2025-03-27 at 18:25 By Ionut Arghire Russian-speaking espionage group RedCurl has been deploying ransomware on victims’ networks in a recent campaign. The post Russian Espionage Group Using Ransomware in Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Russian Espionage Group Using Ransomware in Attacks Read More »
Ransomware Groups Increasingly Adopting EDR Killer Tools 2025-03-27 at 14:47 By Ionut Arghire ESET uncovers a link between RansomHub, Play, Medusa, and BianLian ransomware gangs as more groups adopt tools to disable EDR software. The post Ransomware Groups Increasingly Adopting EDR Killer Tools appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View
Ransomware Groups Increasingly Adopting EDR Killer Tools Read More »
Russian Ransomware Gang Exploited Windows Zero-Day Before Patch 2025-03-26 at 18:26 By Ryan Naraine Exploitation of Windows MMC zero-day is being pinned on a ransomware gang known as EncryptHub (an affiliate of RansomHub) The post Russian Ransomware Gang Exploited Windows Zero-Day Before Patch appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View
Russian Ransomware Gang Exploited Windows Zero-Day Before Patch Read More »
Enemies with benefits: RansomHub and rival gangs share EDRKillShifter tool 2025-03-26 at 17:02 By Help Net Security ESET researchers have published an in-depth analysis highlighting significant shifts within the ransomware landscape, spotlighting the rise of RansomHub. This relatively new ransomware-as-a-service operation has quickly come to dominate the scene. “The fight against ransomware reached two milestones
Enemies with benefits: RansomHub and rival gangs share EDRKillShifter tool Read More »
New Ransomware Group Claims Attack on US Telecom Firm WideOpenWest 2025-03-26 at 14:49 By Ionut Arghire A new ransomware group called Arkana claims to have compromised the US telecommunications provider WideOpenWest. The post New Ransomware Group Claims Attack on US Telecom Firm WideOpenWest appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View
New Ransomware Group Claims Attack on US Telecom Firm WideOpenWest Read More »
Ransomware Shifts Tactics as Payouts Drop: Critical Infrastructure in the Crosshairs 2025-03-25 at 13:54 By Kevin Townsend Threats themselves change very little, but the tactics used are continually revised to maximize the criminals’ return on investment and effort. The post Ransomware Shifts Tactics as Payouts Drop: Critical Infrastructure in the Crosshairs appeared first on SecurityWeek.
Ransomware Shifts Tactics as Payouts Drop: Critical Infrastructure in the Crosshairs Read More »
OT systems are strategic targets in global power struggles 2025-03-25 at 08:06 By Help Net Security Compared to 2023, 2024 saw a smaller increase in cyberattacks that caused physical consequences on OT organizations, according to Waterfall Security. Nevertheless, there were sharp jumps in the number of sites affected by the hacks, as well as in
OT systems are strategic targets in global power struggles Read More »
Medusa Ransomware Uses Malicious Driver to Disable Security Tools 2025-03-24 at 13:46 By Ionut Arghire The Medusa ransomware relies on a malicious Windows driver to disable the security tools running on the infected systems. The post Medusa Ransomware Uses Malicious Driver to Disable Security Tools appeared first on SecurityWeek. This article is an excerpt from
Medusa Ransomware Uses Malicious Driver to Disable Security Tools Read More »
Albabat Ransomware Expands Targets, Abuses GitHub 2025-03-24 at 12:18 By Ionut Arghire New versions of the Albabat ransomware target Windows, Linux, and macOS, and retrieve configuration files from GitHub. The post Albabat Ransomware Expands Targets, Abuses GitHub appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Albabat Ransomware Expands Targets, Abuses GitHub Read More »
Ransomware Group Claims Attack on Virginia Attorney General’s Office 2025-03-21 at 16:47 By Ionut Arghire The Cloak ransomware group has claimed responsibility for a February cyberattack on Virginia Attorney General’s Office. The post Ransomware Group Claims Attack on Virginia Attorney General’s Office appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
Ransomware Group Claims Attack on Virginia Attorney General’s Office Read More »
Ransomware Group Claims Attacks on Ascom, Jaguar Land Rover 2025-03-21 at 12:48 By Ionut Arghire The Hellcat ransomware group claims to have stolen tens of gigabytes of data from Ascom and Jaguar Land Rover. The post Ransomware Group Claims Attacks on Ascom, Jaguar Land Rover appeared first on SecurityWeek. This article is an excerpt from
Ransomware Group Claims Attacks on Ascom, Jaguar Land Rover Read More »
AI will make ransomware even more dangerous 2025-03-21 at 08:07 By Help Net Security Ransomware is the top predicted threat for 2025, which is especially concerning given 38% of security professionals say ransomware will become even more dangerous when powered by AI, according to Ivanti. In comparison to the threat level, only 29% of security
AI will make ransomware even more dangerous Read More »
500,000 Impacted by Pennsylvania Teachers Union Data Breach 2025-03-20 at 14:29 By Ionut Arghire Pennsylvania State Education Association says the personal information of over 500,000 individuals was stolen in a data breach. The post 500,000 Impacted by Pennsylvania Teachers Union Data Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
500,000 Impacted by Pennsylvania Teachers Union Data Breach Read More »
RansomHub affiliate leverages multi-function Betruger backdoor 2025-03-20 at 12:03 By Zeljka Zorz A RansomHub affiliate is leveraging a new multi-function backdoor dubbed Betruger to perform various actions during their attacks, Symantec researchers have discovered. The Betruger backdoor The malware can take screenshots, log keystroke, scan networks, dump credentials, upload files to a command and control
RansomHub affiliate leverages multi-function Betruger backdoor Read More »
Western Alliance Bank Discloses Data Breach Linked to Cleo Hack 2025-03-18 at 13:46 By Ionut Arghire The personal information of 22,000 Western Alliance Bank customers was stolen in a data breach linked to Cl0p’s hacking of the Cleo file transfer tool. The post Western Alliance Bank Discloses Data Breach Linked to Cleo Hack appeared first
Western Alliance Bank Discloses Data Breach Linked to Cleo Hack Read More »
Pay, fight, or stall? The dilemma of ransomware negotiations 2025-03-17 at 08:02 By Help Net Security Ransomware negotiations are a high-stakes game where every decision matters. In this Help Net Security video, Kurtis Minder, CEO at GroupSense, takes us inside the world of ransomware negotiations. We learn how attackers communicate, the tough decisions victims face,
Pay, fight, or stall? The dilemma of ransomware negotiations Read More »
LockBit Ransomware Developer Extradited to US 2025-03-14 at 14:30 By Eduard Kovacs Russian-Israeli LockBit ransomware developer Rostislav Panev has been extradited from Israel to the United States. The post LockBit Ransomware Developer Extradited to US appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
LockBit Ransomware Developer Extradited to US Read More »
Recent Fortinet Vulnerabilities Exploited in ‘SuperBlack’ Ransomware Attacks 2025-03-14 at 12:27 By Ionut Arghire The newly discovered SuperBlack ransomware has been exploiting two vulnerabilities in Fortinet firewalls. The post Recent Fortinet Vulnerabilities Exploited in ‘SuperBlack’ Ransomware Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Recent Fortinet Vulnerabilities Exploited in ‘SuperBlack’ Ransomware Attacks Read More »
Top 5 threats keeping CISOs up at night in 2025 2025-03-14 at 08:05 By Help Net Security Cyber threats in 2025 require a proactive, adaptive approach. To stay ahead, CISOs must balance technical defenses, regulatory expectations, and human factors. By prioritizing AI-driven security, ransomware resilience, supply chain risk management, insider threat mitigation, and compliance preparedness,
Top 5 threats keeping CISOs up at night in 2025 Read More »
DeepSeek’s Malware-Generation Capabilities Put to Test 2025-03-13 at 15:01 By Eduard Kovacs Researchers have analyzed the ability of the Chinese gen-AI DeepSeek to create malware such as ransomware and keyloggers. The post DeepSeek’s Malware-Generation Capabilities Put to Test appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
DeepSeek’s Malware-Generation Capabilities Put to Test Read More »