Skip to main content

Tag: ransomwareops

8 articles

Microsoft Ties Medusa Ransomware Gang to Zero-Day Exploits

Microsoft Ties Medusa Ransomware Gang to Zero-Day Exploits

Meet Storm-1175, a China-based cybercriminal group linked to the notorious Medusa ransomware gang, who's rapidly exploiting vulnerabilities to wreak havoc. This financially motivated group is marrying fast-moving zero-day exploits with Medusa ransomware, leading to a sharp escalation in attacks.

Analyst 207
Lazarus Group Exclusive Medusa Strikes Critical Healthcare

Lazarus Group Exclusive Medusa Strikes Critical Healthcare

Get the inside story on how the Lazarus Group’s Medusa strike rocked critical healthcare—and what it means for patients, providers, and the future of cyber defenses.

Analyst 207
China-linked cybercrims Exclusive: Critical ESXi Zero-Day

China-linked cybercrims Exclusive: Critical ESXi Zero-Day

China-linked cybercrims reportedly sat on a working ESXi escape kit for more than a year — letting attackers jump from guest VMs to ESXi hosts and rip through virtual infrastructure. The real question now: how many organizations already paid the price before anyone even knew an ESXi zero-day existed?

Analyst 207
DragonForce Cartel Exclusive Deadly Conti Ransomware Threat

DragonForce Cartel Exclusive Deadly Conti Ransomware Threat

Get an exclusive look at how the DragonForce Cartel is unleashing the deadly Conti Ransomware—and learn who’s at risk and simple steps you can take to protect yourself.

Analyst 207
Oracle E-Business Suite: Stunning Critical Breach Risk

Oracle E-Business Suite: Stunning Critical Breach Risk

A zero-day in Oracle E-Business Suite, actively exploited by CL0P since Aug. 9, 2025, likely hit dozens of organizations and put payroll, financial and HR data at risk. Security teams and leaders are racing to contain the damage, patch systems and lock down access before attackers strike again.

Analyst 207
Akira ransomware: Stunning High-Risk SonicWall Exploit

Akira ransomware: Stunning High-Risk SonicWall Exploit

Heads up: Akira ransomware is actively exploiting three SonicWall vulnerabilities. If you run SonicWall gear, patch now and double-check your defenses to avoid compromise.

Analyst 207
delete backups: Stunning Risky Cloud Deletion Alert

delete backups: Stunning Risky Cloud Deletion Alert

Imagine losing not just your systems but the backups you counted on—attackers are now exfiltrating data and deleting snapshots in cloud environments like Azure, turning recoveries into impossible puzzles. Treat backups as crown jewels: lock them down with least-privilege access, immutability, offline copies, and strong identity controls before it’s too late.

Analyst 207
Colt Technology Services Devastating Outage Exclusive

Colt Technology Services Devastating Outage Exclusive

A ransomware attack on Colt has left many customers facing prolonged internet and network outages, turning a brief advisory into days of stalled operations, lost revenue and frayed trust. The episode shows how deeply businesses depend on major carriers—and why clearer communication, stronger resilience and tougher safeguards are urgently needed.

Analyst 207