Ransomware and Risk - Cyber Security Informer

Qilin ransomware gang now offers a “Call Lawyer” feature to pressure victims

Security Affairs

JUNE 22, 2025

Qilin ransomware gang now offers a “Call Lawyer” feature to help affiliates pressure victims into paying, per Cybereason. The Qilin ransomware group is now offering legal support to its affiliates through a “Call Lawyer” feature to pressure victims into paying. ” reads the report published by Cybereason.

Ransomware

Ransomware DDOS Cybercrime Healthcare

Akira ransomware gang used an unsecured webcam to bypass EDR

Security Affairs

MARCH 8, 2025

The Akira ransomware gang exploited an unsecured webcam to bypass EDR and launch encryption attacks on a victim’s network. Cybersecurity researchers at S-RM team discovered a novel attack technique used by the Akira ransomware gang. Realizing EDR was active, they pivoted by scanning the network for vulnerable devices.

Ransomware

Ransomware IoT Encryption Passwords

Healthcare Now Third-Most Targeted Industry for Ransomware

SecureWorld News

NOVEMBER 14, 2024

Ransomware attacks on healthcare organizations have sharply increased in 2024, as shown by recent research from Safety Detectives. Compared to 2023, healthcare providers are facing a higher frequency of ransomware incidents, impacting their ability to deliver essential services and protect sensitive patient data.

Healthcare

Healthcare Ransomware Identity Theft Data breaches

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory warning organizations about Ghost (Cring) ransomware, a sophisticated cyber threat that has been compromising critical infrastructure, businesses, and government entities worldwide.

Ransomware

Ransomware IoT Encryption Social Engineering

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Businesses must adopt tools and automation capable of invoking immediate action, even at the risk of false positives. Raising security baselines across industries is essential, with risk mitigationnot acceptancebecoming the standard. Security teams will need to address the unique risks posed using LLMs in mission critical environments.

Cyber threats

Cyber threats CISO IoT Phishing

How Interlock Ransomware Affects the Defense Industrial Base Supply Chain

Security Affairs

MAY 13, 2025

Interlock Ransomware ‘s attack on a defense contractor exposed global defense supply chain details, risking operations of top contractors and their clients. Resecurity envisions the cascading effects on the defense supply chain due to ransomware activity.

Ransomware

Ransomware Cyber Attacks Risk Hacking

Bitdefender released a decryptor for the ShrinkLocker ransomware

Security Affairs

NOVEMBER 13, 2024

Bitdefender released a decryptor for the ShrinkLocker ransomware, which modifies BitLocker configurations to encrypt a system’s drives. ShrinkLocker ransomware was first discovered in May 2024 by researchers from Kaspersky. “ShrinkLocker is a novel ransomware strain that leverages a unique approach to encrypt systems.

Ransomware

Ransomware Encryption Passwords Backups

Cyber Risk in U.S. Healthcare: Tackling HIPAA, Vendors, and Human Error – A Free Webinar With Joseph Steinberg and Chip Witt

Joseph Steinberg

APRIL 23, 2025

From ransomware and cloud misconfigurations to vulnerable medical devices, U.S. healthcare organizations are under relentless cyber pressure and the risks to patient safety have never been higher. The post Cyber Risk in U.S. Whats Broken in U.S. Healthcare Cybersecurity And How to Fix It.

Healthcare

Healthcare Cyber Risk Artificial Intelligence Risk

Columbus Ransomware Attack Exposes 500,000+ Residents’ Data: How to Stay Safe

eSecurity Planet

NOVEMBER 6, 2024

Following a July 18 attack by the Rhysida ransomware group — believed to have Russian affiliations — Columbus is still reeling from the exposure of vast amounts of sensitive resident data. Businesses that handle customer data or interact with city networks are now faced with heightened risks.

Ransomware

Ransomware Authentication Identity Theft Penetration Testing

Memorial Hospital and Manor suffered a ransomware attack

Security Affairs

NOVEMBER 6, 2024

Georgia, a ransomware attack disrupted Memorial Hospital and Manor’s access to its Electronic Health Record system. A ransomware attack hit Memorial Hospital and Manor in Bainbridge, Georgia, and disrupted the access to its Electronic Health Record system. Ransomware attacks on U.S. terabytes of data.

Ransomware

Ransomware Healthcare Antivirus Data breaches

Fog and Akira ransomware attacks exploit SonicWall VPN flaw CVE-2024-40766

Security Affairs

OCTOBER 29, 2024

Fog and Akira ransomware operators are exploiting SonicWall VPN flaw CVE-2024-40766 to breach enterprise networks. Fog and Akira ransomware operators are exploiting the critical SonicWall VPN vulnerability CVE-2024-40766 (CVSS v3 score: 9.3) to breach corporate networks via SSL VPN access. ” reads the advisory.

VPN

VPN Ransomware Firewall Internet

Report Shows Ransomware Has Grown 41% for Construction Industry

Digital Shadows

NOVEMBER 12, 2024

DRP Insights: Credential Exposure Makes Up 75% of Alerts Construction companies are increasingly vulnerable to opportunistic attacks, with credential exposure incidents now accounting for 75% of all GreyMatter Digital Risk Protection (DRP) alerts for the sector.

Ransomware

Ransomware Phishing Cyber threats Malware

SMBs Know They’re At Risk, but Most Aren’t Embracing AI

Security Boulevard

MAY 8, 2025

A survey by CrowdStrike finds the gap between SMB awareness of cyber threats and efforts by them to protect themselves is widening, with not enough of them spending the money needed on AI and other tools to defend against ransomware and other attacks.

Risk

Risk Cyber threats Ransomware Data privacy

Insecure Medical Devices — Illumina DNA Sequencer Illuminates Risks

Security Boulevard

JANUARY 8, 2025

The post Insecure Medical Devices Illumina DNA Sequencer Illuminates Risks appeared first on Security Boulevard. IEI-IEI, Oh: Running an obsolete OS, on obsolete hardware, configured with obsolete settings.

Risk

Risk Social Engineering Internet Internet

Codefinger ransomware gang uses compromised AWS keys to encrypt S3 bucket

Security Affairs

JANUARY 15, 2025

The ransomware group Codefinger is using compromised AWS keys to encrypt S3 bucket data using SSE-C, Halcyon researchers warn. The ransomware group Codefinger has been spotted using compromised AWS keys to encrypt data in S3 buckets. Halcyon researchers pointed out that this ransomware campaign does not exploit any AWS vulnerability.

Encryption

Encryption Ransomware Authentication Accountability

Shared Intel Q&A: Can risk-informed patching finally align OT security with real-world threats?

The Last Watchdog

JUNE 9, 2025

Attackers—from nation-state actors to ransomware gangs—are growing more creative and persistent in probing utility networks and operational technology systems that underpin modern life. With Bastazo, Huff and his team are advancing a bold alternative: risk-informed remediation. However, there are real supply chain risks to patching.

Risk

Risk Energy and Utilities Data collection Cybersecurity

Cisco Talos: Top Ransomware TTPs Exposed

Tech Republic Security

JULY 10, 2024

Read about the new Cisco Talos report on the top ransomware groups’ techniques and learn how to mitigate this cybersecurity risk. Cisco Talos observed the TTPs used by 14 of the most prevalent ransomware groups based on their volume of attack, impact to customers and atypical behavior.

Ransomware

Ransomware Risk Cybersecurity Social Engineering

Romanian energy supplier Electrica Group is facing a ransomware attack

Security Affairs

DECEMBER 9, 2024

Romanian energy supplier Electrica Group is investigating an ongoing ransomware attack impacting its operations. The company did not disclose details of the cyberattack, however, Romania’s Ministry of Energy confirmed that the company was the victim of a ransomware attack that hasn’t impacted the company’s SCADA systems.

Ransomware

Ransomware Cyber Attacks Cybercrime Marketing

Stoli Vodka: Bankrupt After Ransomware Attack

Security Boulevard

DECEMBER 6, 2024

The post Stoli Vodka: Bankrupt After Ransomware Attack appeared first on Security Boulevard. Absolutely un-fabulous: Smells like Russia is responsible, but reality is a bit more complicated.

Ransomware

Ransomware Cyber Attacks Security Awareness Risk

New Ransomware Tactics & Tools: An In-Depth Analysis of Emerging Threats

Penetration Testing

APRIL 7, 2025

The digital landscape continues to be challenged by the persistent and evolving threat of ransomware. Organizations worldwide face an increasing risk of sophisticated cyberattacks that can disrupt operations, compromise sensitive data, and inflict significant financial and reputational damage.

Ransomware

Ransomware Risk Cybersecurity Malware

News alert: SpyCloud study shows Darknet identity exploitation arising to become a primary cyber risk

The Last Watchdog

MARCH 19, 2025

SpyCloud , the leading identity threat protection company, today released its 2025 SpyCloud Annual Identity Exposure Report , highlighting the rise of darknet-exposed identity data as the primary cyber risk facing enterprises today. It requires organizations to rethink the risks posed by employees, consumers, partners and suppliers.

Cyber Risk

Cyber Risk Risk Phishing Cybercrime

How Spread Betting Platforms Safeguard Traders Against Cyber Risks

IT Security Guru

JANUARY 30, 2025

So, lets explore how spread betting platforms are rising to this challenge and ensuring that their platforms are cyber risk-free. Cyber Risks Facing Spread Betting Platforms Cyber threats are becoming more dangerous than ever, and spread betting platforms are a major target for most of these cyberattacks.

Cyber Risk

Cyber Risk Risk Penetration Testing Accountability

Threat Spotlight: Inside the World’s Fastest Rising Ransomware Operator — BlackLock

Digital Shadows

FEBRUARY 17, 2025

Key Findings First observed in March 2024, BlackLock (aka El Dorado or Eldorado) has rapidly emerged as a major player in the ransomware-as-a-service (RaaS) ecosystem. By Q4 2024, it ranked as the 7th most prolific ransomware group on data-leak sites, fueled by a staggering 1,425% increase in activity from Q3.

Ransomware

Ransomware Malware Risk Accountability

Ransomware Attack Ends a 150 Year Company

Security Boulevard

MARCH 5, 2025

That is why it is absolutely crucial to have an expert cybersecurity leader to comprehend the risk situation and communicate the business landscape options. It is a dynamic adversarial endeavor where risk must be continually managed. To all the CEOs, CIOs, fellow C-suites, and Boards out there, be smart when it comes to cybersecurity.

Ransomware

Ransomware Cybersecurity Risk Technology

Dental group lied through teeth about data breach, fined $350,000

Malwarebytes

JANUARY 6, 2025

A US chain of dental offices known as Westend Dental LLC denied a 2020 ransomware attack and its associated data breach, instead telling their customers that data was lost due to an accidentally formatted hard drive. In October 2020, Westend Dental was attacked by the Medusa Locker ransomware group.

Data breaches

Data breaches Ransomware Passwords Insurance

ICICI Bank Ransomware Breach: A Stark Reminder of Supply Chain Risk and the Need for Real-Time Cyber Vigilance

Security Boulevard

APRIL 15, 2025

The recent ransomware breach tied to ICICI Bankclaimed by the LockBit grouphas raised fresh concerns about the fragility of digital ecosystems and third-party risk. The post ICICI Bank Ransomware Breach: A Stark Reminder of Supply Chain Risk and the Need for Real-Time Cyber Vigilance appeared first on Security Boulevard.

Banking

Banking Risk Ransomware

CISA Order Highlights Persistent Risk at Network Edge

Krebs on Security

JUNE 15, 2023

CISA’s mandate follows a slew of recent attacks wherein attackers exploited zero-day flaws in popular networking products to conduct ransomware and cyber espionage attacks on victim organizations.

Risk

Risk VPN Internet Internet

Medusa Ransomware Warning: CISA and FBI Issue Urgent Advisory

eSecurity Planet

MARCH 17, 2025

The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the Federal Bureau of Investigation (FBI) and the Multi-State Information Sharing and Analysis Center (MS-ISAC), has released a joint cybersecurity advisory warning organizations about the escalating threat posed by the Medusa ransomware.

Ransomware

Ransomware Backups Firmware Insurance

Data Theft Drove 94% of Global Cyberattacks in 2024 & Ransomware Defenses are “Increasingly Complex”

Tech Republic Security

FEBRUARY 26, 2025

Ransomware groups now steal, encrypt, and threaten to leak company data on the dark web, forcing victims to pay or risk exposing sensitive information.

Ransomware

Ransomware Encryption Risk Artificial Intelligence

The C-Suite Power Shift: Why CIOs, CTOs, and CISOs Must Realign to Survive

Jane Frankland

JUNE 8, 2025

However, the lines are blurring and if these executive roles don’t realign—clearly and deliberately—the result will be friction, inefficiency, and exposure to security and reputational risks that no organisation can afford. The CIO: At Risk of Being Sidelined Historically, the CIO oversaw enterprise-wide IT. Projects stall.

CISO

CISO Digital transformation Technology Risk

Are Leaders Ready to Break the Ransomware Cycle

Security Boulevard

OCTOBER 21, 2024

It is good to see US government leaders realize that ransomware is a growing existential threat to our country, at the hands of our adversaries. A top US national cybersecurity advisor stated in a recent op-ed , “This is a troubling practice that must end.” The government is looking at ways to disrupt ransomware attacks.

Ransomware

Ransomware Insurance Cyber Insurance Government

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

The Last Watchdog

OCTOBER 23, 2024

As small businesses increasingly depend on digital technologies to operate and grow, the risks associated with cyber threats also escalate. INE Security recommends establishing a routine for updating and patching software, which can significantly reduce the risk of a breach. Cary, NC, Oct.

Small Business

Small Business Data breaches Backups Passwords

Ransomware Scum — Out For Blood: NYBCe is Latest Victim

Security Boulevard

JANUARY 31, 2025

Bloody hell: New York Blood Center Enterprises crippled by ransomware scrotes unknown. The post Ransomware Scum Out For Blood: NYBCe is Latest Victim appeared first on Security Boulevard.

Ransomware

Ransomware Social Engineering Healthcare Data privacy

U.S. CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

OCTOBER 19, 2024

This week, Sophos researchers warned that ransomware operators are exploiting the critical vulnerability CVE-2024-40711 in Veeam Backup & Replication to create rogue accounts and deploy malware. Overlapping indicators link these cases to prior Fog and Akira ransomware attacks. In one case, attackers dropped Fog ransomware.

Backups

Backups Ransomware VPN Authentication

The Rise of Non-Ransomware Attacks on AWS S3 Data

Thales Cloud Protection & Licensing

FEBRUARY 12, 2025

The Rise of Non-Ransomware Attacks on AWS S3 Data madhav Thu, 02/13/2025 - 04:39 A sophisticated ransomware gang, Codefinger, has a cunning new technique for encrypting data stored in AWS S3 buckets without traditional ransomware tools. Unlike conventional ransomware, the malicious actors dont exfiltrate any data.

Ransomware

Ransomware Encryption Digital transformation Risk

Cyber Risk Management Strategy: How to Plan

Security Boulevard

JUNE 18, 2025

Whether it’s stolen data, ransomware, or phishing, attacks are becoming more frequent and severe. The post Cyber Risk Management Strategy: How to Plan appeared first on Security Boulevard. Online threats are everywhere, and no organization is safe from them. That’s why having a clear.

Cyber Risk

Cyber Risk Risk Phishing Ransomware

Medical testing company LifeLabs failed to protect customer data, report finds

Malwarebytes

NOVEMBER 27, 2024

In 2019, a ransomware attack hit LifeLabs, a Canadian medical testing company. The ransomware encrypted the lab results of 15 million Canadians, and personally identifiable information (PII) of 8.6 Reportedly , LifeLabs paid the ransomware group, which is why it’s still unknown which group was behind the attack.

Ransomware

Ransomware Healthcare Risk Encryption

How Ransomware Gangs Weaponize Employee Burnout to Breach Corporate Defenses

SecureWorld News

MAY 5, 2025

Companies that treat burnout like an HR issue instead of a security risk are leaving their front door wide openand ransomware gangs are walking right in. Every missed alert, every "temporary" shortcut, every unchecked admin request compounds the risk. A ransomware group doesn't hit during periods of stability.

Ransomware

Ransomware Firewall Encryption Phishing

Leaked Black Basta Chats Expose Ransomware Secrets & Infighting

eSecurity Planet

FEBRUARY 24, 2025

Over 200,000 internal messages from the notorious ransomware group Black Basta have surfaced online exposing deep divisions, ransom negotiations, and internal dysfunction. Cybersecurity experts are now poring over the data, uncovering a rare inside look at how one of the most feared ransomware groups operates and potentially unravels.

Ransomware

Ransomware Phishing Healthcare Cryptocurrency

Cybersecurity in Aviation: Rising Threats and Modernization Efforts

SecureWorld News

JUNE 9, 2025

The attack vectors are diverse: fraudulent websites mimicking airline booking portals, phishing campaigns targeting airline staff, distributed denial-of-service (DDoS) attacks crippling airport websites malware infiltrating maintenance system, ransomware encrypting critical backend databases, and more.

Cybersecurity

Cybersecurity Social Engineering Computers and Electronics Risk

EDR-as-a-Service makes the headlines in the cybercrime landscape

Security Affairs

APRIL 7, 2025

RISKS AND IMPACTS ON CYBERSECURITY AND PRIVACY The availability of accounts linked to law enforcement and other government agencies, combined with the ease Threat Actors have in renting an EDR service, jeopardizes both the security of governmental infrastructures and the protection of citizens privacy.

Cybercrime

Cybercrime Social Engineering Accountability Government

RSAC Fireside Chat: Operationalizing diverse security to assure customers, partners–and insurers

The Last Watchdog

JUNE 11, 2025

Related: Getting the most from cyber insurance At RSAC 2025, I met with ESET Chief Security Evangelist Tony Anscombe to trace a quiet but growing convergence: endpoint defense, cyber insurance, and monoculture risk are no longer separate concerns. They’re overlapping — and reshaping how security programs are evaluated. And what of AI?

Insurance

Insurance Cyber Insurance Antivirus CISO

ISACA impressions: AI, risk and resilience feature at the 2025 conference

BH Consulting

APRIL 16, 2025

Dr. Ng emphasised the balancing act between innovation and risk. Cloud calls for cooperation in a changed risk landscape Has computing really changed with the cloud? Although the core architecture hasnt shifted drastically, he said the risk landscape has.

Risk

Risk Government Ransomware Retail

FBI warns of malicious free online document converters spreading malware

Security Affairs

MARCH 24, 2025

“In this scenario, criminals use free online document converter tools to load malware onto victims computers, leading to incidents such as ransomware.” ” Victims often realize too late that malware has infected their devices, leading to ransomware or identity theft. ” reads the alert.

Malware

Malware Scams Identity Theft Antivirus

Qilin ransomware gang now offers a “Call Lawyer” feature to pressure victims

Akira ransomware gang used an unsecured webcam to bypass EDR

Trending Sources

Healthcare Now Third-Most Targeted Industry for Ransomware

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

How Interlock Ransomware Affects the Defense Industrial Base Supply Chain

Bitdefender released a decryptor for the ShrinkLocker ransomware

Cyber Risk in U.S. Healthcare: Tackling HIPAA, Vendors, and Human Error – A Free Webinar With Joseph Steinberg and Chip Witt

Columbus Ransomware Attack Exposes 500,000+ Residents’ Data: How to Stay Safe

Memorial Hospital and Manor suffered a ransomware attack

Fog and Akira ransomware attacks exploit SonicWall VPN flaw CVE-2024-40766

Report Shows Ransomware Has Grown 41% for Construction Industry

SMBs Know They’re At Risk, but Most Aren’t Embracing AI

Insecure Medical Devices — Illumina DNA Sequencer Illuminates Risks

Codefinger ransomware gang uses compromised AWS keys to encrypt S3 bucket

Shared Intel Q&A: Can risk-informed patching finally align OT security with real-world threats?

Cisco Talos: Top Ransomware TTPs Exposed

Romanian energy supplier Electrica Group is facing a ransomware attack

Stoli Vodka: Bankrupt After Ransomware Attack

New Ransomware Tactics & Tools: An In-Depth Analysis of Emerging Threats

News alert: SpyCloud study shows Darknet identity exploitation arising to become a primary cyber risk

How Spread Betting Platforms Safeguard Traders Against Cyber Risks

Threat Spotlight: Inside the World’s Fastest Rising Ransomware Operator — BlackLock

Ransomware Attack Ends a 150 Year Company

Dental group lied through teeth about data breach, fined $350,000

ICICI Bank Ransomware Breach: A Stark Reminder of Supply Chain Risk and the Need for Real-Time Cyber Vigilance

CISA Order Highlights Persistent Risk at Network Edge

Medusa Ransomware Warning: CISA and FBI Issue Urgent Advisory

Data Theft Drove 94% of Global Cyberattacks in 2024 & Ransomware Defenses are “Increasingly Complex”

The C-Suite Power Shift: Why CIOs, CTOs, and CISOs Must Realign to Survive

Are Leaders Ready to Break the Ransomware Cycle

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

Ransomware Scum — Out For Blood: NYBCe is Latest Victim

U.S. CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog

The Rise of Non-Ransomware Attacks on AWS S3 Data

Cyber Risk Management Strategy: How to Plan

Medical testing company LifeLabs failed to protect customer data, report finds

How Ransomware Gangs Weaponize Employee Burnout to Breach Corporate Defenses

Leaked Black Basta Chats Expose Ransomware Secrets & Infighting

Cybersecurity in Aviation: Rising Threats and Modernization Efforts

EDR-as-a-Service makes the headlines in the cybercrime landscape

RSAC Fireside Chat: Operationalizing diverse security to assure customers, partners–and insurers

ISACA impressions: AI, risk and resilience feature at the 2025 conference

FBI warns of malicious free online document converters spreading malware

Stay Connected