Ransomware

Ransomware attackers used incorrectly stored recovery codes to disable EDR agents

credentials, Don't miss, Endpoint Security, enterprise, Hot stuff, Huntress, News, Ransomware, Rapid7, SMBs, SonicWall /

Ransomware attackers used incorrectly stored recovery codes to disable EDR agents 2025-09-16 at 15:46 By Zeljka Zorz All target organizations are different, but ransomware attackers are highly adaptive and appreciate – and will exploit – any mistake you make. The latest Akira ransomware attacks Managed security service providers and external incident responders have had a […]

Ransomware attackers used incorrectly stored recovery codes to disable EDR agents Read More »

West Virginia Credit Union Notifying 187,000 People Impacted by 2023 Data Breach

credit union, data breach, Data Breaches, Fairmont Federal Credit Union, Ransomware /

West Virginia Credit Union Notifying 187,000 People Impacted by 2023 Data Breach 2025-09-15 at 12:46 By Ionut Arghire Two years after the fact, Fairmont Federal Credit Union tells customers their personal, financial, and medical information was compromised. The post West Virginia Credit Union Notifying 187,000 People Impacted by 2023 Data Breach appeared first on SecurityWeek.

West Virginia Credit Union Notifying 187,000 People Impacted by 2023 Data Breach Read More »

HybridPetya: (Proof-of-concept?) ransomware can bypass UEFI Secure Boot

bootkit, Don't miss, ESET, Hot stuff, News, Ransomware /

HybridPetya: (Proof-of-concept?) ransomware can bypass UEFI Secure Boot 2025-09-12 at 19:00 By Help Net Security ESET researchers have discovered HybridPetya, a bootkit-and-ransomware combo that’s a copycat of the infamous Petya/NotPetya malware, augmented with the capability of compromising UEFI-based systems and weaponizing CVE-2024-7344 to bypass UEFI Secure Boot on outdated systems. The sample was uploaded from

HybridPetya: (Proof-of-concept?) ransomware can bypass UEFI Secure Boot Read More »

Akira ransomware affiliates continue breaching organizations via SonicWall firewalls

ACSC, Australia, Don't miss, Hot stuff, News, Ransomware, Rapid7, SonicWall, vulnerability /

Akira ransomware affiliates continue breaching organizations via SonicWall firewalls 2025-09-11 at 18:25 By Zeljka Zorz Over a year after SonicWall patched CVE-2024-40766, a critical flaw in its next-gen firewalls, ransomware attackers are still gaining a foothold in organizations by exploiting it. Like last September and earlier this year, the attackers are affiliates of the Akira

Akira ransomware affiliates continue breaching organizations via SonicWall firewalls Read More »

Akira Ransomware Attacks Fuel Uptick in Exploitation of SonicWall Flaw

Akira, exploited, Ransomware, SonicWall /

Akira Ransomware Attacks Fuel Uptick in Exploitation of SonicWall Flaw 2025-09-11 at 15:54 By Ionut Arghire The Akira ransomware group is likely exploiting a combination of three attack vectors to gain unauthorized access to vulnerable appliances. The post Akira Ransomware Attacks Fuel Uptick in Exploitation of SonicWall Flaw appeared first on SecurityWeek. This article is

Akira Ransomware Attacks Fuel Uptick in Exploitation of SonicWall Flaw Read More »

100,000 Impacted by Cornwell Quality Tools Data Breach 

Cornwell Quality Tools, data breach, Data Breaches, Ransomware /

100,000 Impacted by Cornwell Quality Tools Data Breach  2025-09-11 at 15:24 By Eduard Kovacs The tools manufacturer was targeted in a ransomware attack claimed by the Cactus group. The post 100,000 Impacted by Cornwell Quality Tools Data Breach  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

100,000 Impacted by Cornwell Quality Tools Data Breach  Read More »

US Offers $10 Million Reward for Ukrainian Ransomware Operator

cybercrime, Ransomware, reward, Volodymyr Tymoshchuk /

US Offers $10 Million Reward for Ukrainian Ransomware Operator 2025-09-10 at 13:28 By Ionut Arghire Volodymyr Tymoshchuk allegedly hit hundreds of organizations with the LockerGoga, MegaCortex, and Nefilim ransomware families. The post US Offers $10 Million Reward for Ukrainian Ransomware Operator appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

US Offers $10 Million Reward for Ukrainian Ransomware Operator Read More »

Ransomware Losses Climb as AI Pushes Phishing to New Heights

cyber insurance, phishing, Ransomware, Threat Intelligence /

Ransomware Losses Climb as AI Pushes Phishing to New Heights 2025-09-09 at 16:39 By Kevin Townsend Based on real-world insurance claims, Resilience’s midyear report shows vendor risk is declining but costly, ransomware is evolving with triple extortion, and social engineering attacks are accelerating through AI. The post Ransomware Losses Climb as AI Pushes Phishing to

Ransomware Losses Climb as AI Pushes Phishing to New Heights Read More »

160,000 Impacted by Wayne Memorial Hospital Data Breach

data breach, Data Breaches, healthcare, Ransomware /

160,000 Impacted by Wayne Memorial Hospital Data Breach 2025-09-09 at 15:00 By Ionut Arghire In May 2024, hackers stole names, Social Security numbers, financial information, and protected health information from the hospital’s systems. The post 160,000 Impacted by Wayne Memorial Hospital Data Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

160,000 Impacted by Wayne Memorial Hospital Data Breach Read More »

Threat Actor Connected to Play, RansomHub and DragonForce Ransomware Operations

Ransomware /

Threat Actor Connected to Play, RansomHub and DragonForce Ransomware Operations 2025-09-09 at 14:00 By Ionut Arghire The attacker deployed multiple malware families, including two backdoors and a proxy tunneller, and various reconnaissance tools. The post Threat Actor Connected to Play, RansomHub and DragonForce Ransomware Operations appeared first on SecurityWeek. This article is an excerpt from

Threat Actor Connected to Play, RansomHub and DragonForce Ransomware Operations Read More »

PromptLock Only PoC, but AI-Powered Ransomware Is Real

AI, Artificial Intelligence, Claude, Ransomware /

PromptLock Only PoC, but AI-Powered Ransomware Is Real 2025-09-08 at 17:37 By Ionut Arghire PromptLock is only a prototype of LLM-orchestrated ransomware, but hackers already use AI in file encryption and extortion attacks. The post PromptLock Only PoC, but AI-Powered Ransomware Is Real appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

PromptLock Only PoC, but AI-Powered Ransomware Is Real Read More »

Pennsylvania Attorney General Confirms Ransomware Behind Weeks-Long Outage

Ransomware /

Pennsylvania Attorney General Confirms Ransomware Behind Weeks-Long Outage 2025-09-03 at 14:30 By Ionut Arghire Attack disrupted email, phones, and websites for weeks, but officials say no ransom was paid. The post Pennsylvania Attorney General Confirms Ransomware Behind Weeks-Long Outage appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Pennsylvania Attorney General Confirms Ransomware Behind Weeks-Long Outage Read More »

Ransomware Group Exploits Hybrid Cloud Gaps, Gains Full Azure Control in Enterprise Attacks

Cloud, cloud security, Featured, Ransomware, Storm-0501 /

Ransomware Group Exploits Hybrid Cloud Gaps, Gains Full Azure Control in Enterprise Attacks 2025-08-29 at 16:25 By Ionut Arghire Storm-0501 has been leveraging cloud-native capabilities for data exfiltration and deletion, without deploying file-encrypting malware. The post Ransomware Group Exploits Hybrid Cloud Gaps, Gains Full Azure Control in Enterprise Attacks appeared first on SecurityWeek. This article

Ransomware Group Exploits Hybrid Cloud Gaps, Gains Full Azure Control in Enterprise Attacks Read More »

Nevada Confirms Ransomware Attack Behind Statewide Service Disruptions

Nevada, Ransomware /

Nevada Confirms Ransomware Attack Behind Statewide Service Disruptions 2025-08-29 at 16:25 By Ionut Arghire State officials confirm ransomware forced office closures, disrupted services, and led to data theft, as Nevada works with CISA and law enforcement to restore critical systems. The post Nevada Confirms Ransomware Attack Behind Statewide Service Disruptions appeared first on SecurityWeek. This

Nevada Confirms Ransomware Attack Behind Statewide Service Disruptions Read More »

Webinar Today: Ransomware Defense That Meets Evolving Compliance Mandates

Ransomware, Webinar /

Webinar Today: Ransomware Defense That Meets Evolving Compliance Mandates 2025-08-28 at 14:22 By SecurityWeek News Join this live discussion to learn how organizations can strengthen ransomware defenses while staying ahead of tightening compliance requirements. The post Webinar Today: Ransomware Defense That Meets Evolving Compliance Mandates appeared first on SecurityWeek. This article is an excerpt from

Webinar Today: Ransomware Defense That Meets Evolving Compliance Mandates Read More »

Aspire Rural Health System Data Breach Impacts Nearly 140,000

BianLian, data breach, Data Breaches, healthcare, Ransomware /

Aspire Rural Health System Data Breach Impacts Nearly 140,000 2025-08-25 at 15:51 By Eduard Kovacs Aspire Rural Health System was targeted last year by the BianLian ransomware group, which claimed to have stolen sensitive data. The post Aspire Rural Health System Data Breach Impacts Nearly 140,000 appeared first on SecurityWeek. This article is an excerpt

Aspire Rural Health System Data Breach Impacts Nearly 140,000 Read More »

Chip Programming Firm Data I/O Hit by Ransomware

Data I/O, Ransomware /

Chip Programming Firm Data I/O Hit by Ransomware 2025-08-25 at 15:23 By Eduard Kovacs Data I/O has disclosed a ransomware attack that disrupted the company’s operations, including communications, shipping and production.  The post Chip Programming Firm Data I/O Hit by Ransomware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Chip Programming Firm Data I/O Hit by Ransomware Read More »

Telecom Firm Colt Confirms Data Breach as Ransomware Group Auctions Files

Colt, data breach, Data Breaches, Ransomware, telecoms /

Telecom Firm Colt Confirms Data Breach as Ransomware Group Auctions Files 2025-08-21 at 17:57 By Eduard Kovacs Colt Technology Services is working on restoring systems disrupted by a ransomware attack that involved data theft. The post Telecom Firm Colt Confirms Data Breach as Ransomware Group Auctions Files appeared first on SecurityWeek. This article is an

Telecom Firm Colt Confirms Data Breach as Ransomware Group Auctions Files Read More »

Europol Says Qilin Ransomware Reward Fake

cybercrime, Europol, fake, fake hack, Qilin, Ransomware /

Europol Says Qilin Ransomware Reward Fake 2025-08-21 at 09:03 By Eduard Kovacs A $50,000 reward from Europol for two members of the Qilin ransomware group is a ‘scam’, according to the law enforcement agency. The post Europol Says Qilin Ransomware Reward Fake appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Europol Says Qilin Ransomware Reward Fake Read More »

US Seizes $2.8 Million From Zeppelin Ransomware Operator

charged, Cryptocurrency, cybercrime, Featured, Ransomware, seized, Zeppelin /

US Seizes $2.8 Million From Zeppelin Ransomware Operator 2025-08-18 at 14:06 By Ionut Arghire The US has indicted Zeppelin ransomware operator Ianis Antropenko, seizing over $2.8 million in cryptocurrency from his wallet. The post US Seizes $2.8 Million From Zeppelin Ransomware Operator appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

US Seizes $2.8 Million From Zeppelin Ransomware Operator Read More »

Scroll to Top