Ransomware

Small Businesses and Ransomware: Navigating the AI Era Threat

Ransomware has evolved from a niche hacker tactic into a mainstream threat, and small businesses are increasingly in the crosshairs. While large enterprises have resources to invest in cybersecurity teams, threat intelligence, and AI-driven defence tools, many small businesses remain underprotected. In 2025, ransomware attacks will become faster, more automated, and more sophisticated thanks to…

Small business, big risk: How SMBs can fight back against ransomware

ellonjohns4 weeks ago011 mins

Long known to be a sweet spot for cybercriminals, small businesses are more likely to be victimized by ransomware than large enterprises 18 Sep 2025 • , 5 min. read Think your business is too small to be singled out for digital extortion? Think again. Indeed, if you’re an SMB owner, you’d better assume you’re…

GOLD SALEM’s Warlock operation joins busy ransomware landscape

ellonjohns1 month ago011 mins

Counter Threat Unit™ (CTU) researchers are monitoring a threat group that refers to itself as Warlock Group. The group, which CTU™ researchers track as GOLD SALEM, has compromised networks and deployed its Warlock ransomware since March 2025. Microsoft refers to this threat group as Storm-2603 and characterizes it “with moderate confidence to be a China-based…

Storm-2603 spotted deploying ransomware on exploited SharePoint servers – Help Net Security

ellonjohns3 months ago09 mins

One of the groups that, in the past few weeks, has been exploiting vulnerabilities in on-prem SharePoint installation has been observed deploying Warlock ransomware, Microsoft shared on Wednesday. First attack spotted on July 7th On Saturday, Microsoft announced that attackers have been spotted exploiting a zero-day variant (CVE-2025-53770) of a SharePoint vulnerability (CVE-2025-49706) that the…

From Backup to Cyber Resilience: Why IT Leaders Must Rethink Backup in the Age of Ransomware

ellonjohns3 months ago015 mins

With IT outages and disruptions escalating, IT teams are shifting their focus beyond simply backing up data to maintaining operations during an incident. One of the key drivers behind this shift is the growing threat of ransomware, which continues to evolve in both frequency and complexity. Ransomware-as-a-Service (RaaS) platforms have made it possible for even…

4 Arrested Over Scattered Spider Hacking Spree

ellonjohns3 months ago011 mins

WIRED reported this week on public records that show the United States Department of Homeland Security urging local law enforcement around the country to interpret common protest activities and surrounding logistics—including riding a bike, livestreaming a police encounter, or skateboarding—as “violent tactics.” The guidance could influence cops to use everyday behavior as a pretext for…

Qilin Ransomware Adds

ellonjohns4 months ago011 mins

The threat actors behind the Qilin ransomware-as-a-service (RaaS) scheme are now offering legal counsel for affiliates to put more pressure on victims to pay up, as the cybercrime group intensifies its activity and tries to fill the void left by its rivals. The new feature takes the form of a “Call Lawyer” feature on the…

Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion

ellonjohns4 months ago011 mins

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday disclosed that ransomware actors are targeting unpatched SimpleHelp Remote Monitoring and Management (RMM) instances to compromise customers of an unnamed utility billing software provider. “This incident reflects a broader pattern of ransomware actors targeting organizations through unpatched versions of SimpleHelp RMM since January 2025,” the…

A familiar playbook with a twist: 3AM ransomware actors dropped virtual machine with vishing and Quick Assist

ellonjohns5 months ago024 mins

Ransomware is usually a crime of opportunity. Attackers typically strike through an easily-discovered vulnerability or security weakness— unpatched Internet-facing software, vulnerable network edge devices or exposed inbound virtual private network ports lacking multifactor authentication are among the most common points of initial compromise. However, some attacks appear much more targeted and include significant pre-attack reconnaissance…

15 of the Biggest Ransomware Attacks in History | Informa TechTarget

ellonjohns6 months ago021 mins

Ransomware has become a favorite attack strategy for bad actors, with reports labeling it the most effective way for cybercriminals to monetize illegal access into networks. News of ransomware attacks appears daily. More troubling still are predictions that ransomware gangs are becoming more adept at using AI, and well-funded ones could soon use agentic…

Highlights

AI-driven deception: A new face of corporate fraud

MSI MAG A850GLS PCIE5 power supply review

Increasing ADC resolution by adding dither to DC signals

Pixel 10 Pro XL vs. Galaxy S25 Ultra: Which Android Camera Wins?

Category Collection