A new Kyber ransomware operation is targeting Windows systems and VMware ESXi endpoints in recent attacks, with one variant ...

IntroductionIn February 2022, BlackBasta emerged as a successor to Conti ransomware and quickly rose to prominence. BlackBasta was operational for three years until February 2025 when their internal ...

Ransomware incidents in the UK dropped sharply in volume but successful compromises rose significantly year-on-year Attackers ...

Only a quarter (24%) of ransomware incident involved the encryption of data. Data was stolen and either leaked or retained in 54% of cases analyzed. These multidimensional tactics appear largely ...

Ransomware is still often discussed as if it is mainly a malware problem. That view is outdated. For modern organisations, ransomware is now a recovery prob ...

A SystemBC proxy malware botnet of more than 1,570 hosts, believed to be corporate victims, has been discovered following an ...

When ransomware strikes, most organizations spring into action as if they’re responding to a classic crime scene: Tape off the perimeter, start the restoration process, and try to regain access to ...

Not nearly as polite as the name suggests, the ransomware gang has impressed researchers with its speed in scaling up ...

AttackIQ has released a new attack graph that emulates the behaviors of NightSpire Ransomware, a financially motivated ...

Ransomware attacks are evolving from simple file encryption schemes into coordinated, data-driven extortion campaigns that target backups, vendors, and even customers. Attackers now steal information ...

A ransomware attack on a healthcare IT solutions provider has disrupted access to patients’ electronic health records (EHRs) ...