Skip to main content

Tag: ransomware

999 articles

University building with modern architecture, slightly ajar door hinting at vulnerability.

ShinyHunters Exploits Oracle PeopleSoft Zero-Day to Breach 100 Orgs

ShinyHunters, a notorious data theft group, claims to have exploited a critical Oracle PeopleSoft zero-day vulnerability, CVE-2026-35273, to breach over 100 organizations, including the University of Nottingham. The group allegedly stole sensitive data, posting some of it on their leak site.

Analyst 207
Law enforcement officials surround computer screens displaying cryptocurrency transactions.

Europol Disrupts AudiA6 Crypto-Laundering Service Linked to $380 Million Ransomware Scheme

Europol has dismantled a massive cryptocurrency laundering operation, known as AudiA6, that handled over $380 million in illicit funds for ransomware actors and cybercriminals. The service promised anonymity, but actually took a 3-10% cut to clean and return tainted assets in just an hour.

Analyst 207
Dimly lit server room with rows of computer servers, one device highlighted in brighter light.

Ransomware Gang 'The Gentlemen' Traced to Suspected Russian Operator

Meet The Gentlemen, a notorious ransomware gang that's rapidly growing in power thanks to its unusually generous 90/10 affiliate revenue split, outshining the industry standard 80/20 and attracting top talent from rival groups. This bold move has catapulted them to become the second most active ransomware group, with over 332 reported victims since mid-2025.

Analyst 207
Technicians monitor sections of an industrial control room with scattered stations and a large window showing an industrial…

Operational Technology Cybersecurity Gaps Persist Despite Growing Maturity

Many industrial organizations are bolstering their operational technology security, but a significant gap remains: 23% of respondents only have visibility into half of their OT environment. This blind spot leaves them vulnerable to ransomware, nation-state actors, and other cyber threats.

Analyst 207
Rack-mounted backup server in a data center with front panel facing forward.

Veeam Vulnerability Enables RCE Attacks on Backup Servers

A newly discovered vulnerability in Veeam Backup & Replication could allow an authenticated domain user to launch a remote code execution attack on your backup server - a critical target for hackers. Patch now to protect your data: update to version 12.3.2.4854 or later to fix the flaw.

Analyst 207
Network operations center with a laptop showing a blurred VPN configuration screen amidst office equipment.

CISA Mandates Patching of Exploited Check Point VPN Bug

A critical vulnerability in Check Point VPNs, known as CVE-2026-50751, has been exploited in dozens of organizations worldwide, with one incident linked to Qilin ransomware. This bug allows hackers to bypass authentication and establish remote access, putting targeted organizations at risk.

Analyst 207
Remote access VPN setup with laptop and router in foreground and blurred office background.

Check Point Discloses Zero-Day Flaw Exploited by Ransomware Groups

Check Point has uncovered a zero-day flaw, CVE-2026-50751, that allowed ransomware groups to exploit a critical authentication bypass in Remote Access and Mobile Access deployments, prompting an emergency fix. The vulnerability enabled attackers to establish a remote access VPN connection without proper authentication.

Analyst 207
High school hallway with scattered papers and concerned people, laptop screen blurred in foreground.

Ransomware Disrupts Illinois High School, Wales Education Sector

A ransomware attack has forced Evanston Township High School in Illinois to shut down until at least Wednesday, canceling summer school, sports camps, and on-campus activities. The school has activated its incident response procedures and is working with cyber experts to investigate and recover from the breach.

Analyst 207
Security analysts work at a large workstation surrounded by screens displaying data visualizations and threat maps.

Wazuh Cloud Tackles Security Ops Complexity With AI-Driven Analysis

Tired of drowning in security ops complexity? Wazuh Cloud simplifies threat detection and response with AI-driven analysis, freeing you from infrastructure headaches and empowering you to stay ahead of evolving threats like ransomware and supply chain attacks.

Analyst 207
Dental professional looks concerned while viewing laptop in a brightly-lit healthcare setting.

DentaQuest Breach Exposes 2.6M Accounts

A massive data breach at dental benefits provider DentaQuest has exposed a staggering 2.6 million accounts, after hackers stole over 234 GB of sensitive information and released it following failed negotiations with the company.

Analyst 207
Concerned person in a brightly-lit office setting with a sense of urgency and accelerated activity.

AI Agents Expose Hidden Risks as Insider Threats Evolve

The alarm bells are ringing: cyberattacks now unfold at breakneck speeds, with malicious actors able to wreak havoc in as little as 10-30 minutes, leaving defenders scrambling to keep up. This accelerated threat landscape is fueled by the growing sophistication of AI agents and their integration into business networks.

Analyst 207
Helpdesk workers surrounded by cubicles, phones, and fluorescent lighting, with an atmosphere of unease and vulnerability.

Ransomware Gang Pink Exploits Helpdesk Calls to Steal Credentials

Meet Pink, a notorious ransomware gang that's exploiting helpdesk calls to steal sensitive credentials using clever tactics like vishing and IT impersonation. They're using these stolen secrets to exfiltrate valuable data from enterprise cloud storage and productivity systems, leaving victims with a tough choice: pay up or face the consequences.

Analyst 207
Brightly-lit office setting with computer workstation in foreground and blurred screen.

Multiple Breaches Expose Sensitive Data Across Industries

Sensitive data has been compromised across various industries in a series of alarming breaches, including a clever social engineering scam that exposed info of 6 million Carnival Corporation customers and two incidents involving learning management company Instructure's Canvas platform. These breaches highlight the growing threat of cyber attacks and the importance of robust data protection measures.

Analyst 207
Dental office with scattered papers and blurred computer screen.

DentaQuest Breach Exposes 2.6 Million Accounts

A major data breach at DentaQuest has exposed a staggering 2.6 million accounts, after an extortion group called ShinyHunters claimed to have stolen over 234 GB of sensitive data. The breach was confirmed by DentaQuest on June 2, who assured customers they are actively managing the cybersecurity incident.

Analyst 207
Dark web marketplace setup with laptop and papers in dimly lit room.

AI-Powered Cybercrime Tools Flood Dark Web Marketplaces

The dark web has seen a staggering 3,810% surge in AI-powered cybercrime tools, with posts skyrocketing from 38 in December to 1,486 in February, signaling a new wave of threats. This alarming trend has experts like Cynthia Kaiser, SVP of the Ransomware Research Center at Halcyon, warning that cyber threats have become the "national security challenge of our lifetime."

Analyst 207
Ransomware workspace with Russian map and computer screens in dim light.

Ransomware Operator Flouts Unwritten Rule, Hits Russia

A shocking move by a ransomware operator has sent shockwaves through the cybercrime underworld: they've brazenly targeted Russia, flouting an unwritten rule that's long been observed by hackers. This bold - and some might say, boneheaded - decision has left many in the cybersecurity community scratching their heads.

Analyst 207
Blurred laptop screen and documents on a desk in a typical office setting.

AI-Built Ransomware Toolkit Evades EDR Solutions with Automated Attacks

Sophos researchers uncovered a sophisticated AI-built ransomware toolkit that cleverly evades detection by automated security solutions, triggering alerts only after it had already compromised a customer system. The toolkit's sinister purpose was revealed through investigation, which found references to a ransom note and a list of targeted organizations on a dark web leak site.

Analyst 207
Professionals gather around a workstation with a large, blank monitor displaying a gradient screen.

UK Firms Bolster Defenses Against AI-Powered Cyber Attacks

UK organizations are bracing themselves for a perfect storm of cyber threats, with AI-powered attacks topping the list of concerns as the most pressing risk over the next year. In fact, 43% of UK respondents rank AI-powered attacks as their biggest worry, surpassing traditional threats like ransomware and phishing.

Analyst 207
Cybersecurity team members respond to simulated cyber-attack in empty supermarket aisle.

Cybersecurity Teams Face Simulated Supermarket Cyber-Attack Test

Get ready to enter the war room and face off against a simulated cyber-attack in a thrilling tabletop experience, where you'll play out a high-stakes battle to protect a fictional supermarket from a multi-stage cyber threat. Join Semperis at Infosecurity Europe 2026 for a 90-minute immersive roleplaying simulation that puts your cybersecurity skills to the test.

Analyst 207
Brightly lit conference room with engaged attendees, podium, and large screen near tall windows.

Cybersecurity Shifts from Risk to Acceleration, Connection

The World Economic Forum's 2025 survey reveals a stark reality: 72% of organizations are facing increased cyber risks, with ransomware remaining a top threat - forcing us to rethink how we keep information safe in an AI-driven world. It's time to shift from traditional risk management to practical, accelerated solutions.

Analyst 207
Travel agency office with laptop showing subtle cyber threat signs.

Travel Sector Braces for Cyberattacks as Summer Looms

As summer approaches, the travel sector is bracing for a surge in cyberattacks, with a staggering 92% of travel agencies experiencing some form of cyber threat in the last year. Ransomware, data breaches, and cyberattacks top the list of concerns, cited by 68% of agencies as the greatest threat to their success.

Analyst 207
Concerned employees surrounded by scattered papers and a laptop at a desk with a blurred cityscape in the background.

Carnival Cruise Data Breach Exposes 6 Million Customers

A recent data breach at Carnival Cruise, affecting 6 million customers, highlights the vulnerability of traditional security controls to social engineering tactics, where a single compromised employee device can lead to devastating consequences. This incident serves as a stark reminder of the human factor in cybersecurity, where threat actors exploit trust and impersonation to gain access to sensitive information.

Analyst 207
Dimly lit law office hallway with doors ajar, hinting at vulnerability and unauthorized access.

FBI Warns Law Firms of Silent Ransom Group's In-Person Data Heists

The FBI is sounding the alarm for US-based law firms after the Silent Ransom Group, a notorious data-extortion gang, claimed over 100 attacks - with a recent surge in activity that's left experts on high alert. This group's twist? They're using in-person tactics, combined with social engineering, to get their hands on sensitive data.

Analyst 207
Person sitting at desk, confused, looking at smartphone with multiple push notifications.

MFA Prompt Bombing Exposes Weakness in Two-Factor Security

A shocking 2.8GB of data was stolen from Cisco after a clever attacker tricked an employee into approving a push-based MFA prompt, highlighting a disturbing vulnerability in two-factor security. This brazen hack, linked to the Yanluowang ransomware group, shows how attackers can exploit the very security measures meant to protect us.

Analyst 207