Ransomware | KITEFALL

Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access 2026-03-19 22:11 The Hacker News Ravie LakshmananMar 18, 2026Network Security / Ransomware Amazon Threat Intelligence is warning of an active Interlock ransomware campaign that's exploiting a recently disclosed critical security flaw in Cisco Secure Firewall Management Center ( …
CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware Attacks 2026-03-19 22:11 The Hacker News Ravie LakshmananMar 19, 2026Network Security / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged government agencies to apply patches for two security flaws impacting Synacor Zimbra Collaboration Suite (ZCS) and …
Ransomware group exploited Cisco firewall vulnerability as a zero day, weeks before a patch appeared 2026-03-19 18:57 CSO According to Amazon, the tools and techniques connect the malware to Interlock, a ransomware actor that appeared in 2024, possibly as a ransomware-as-a-service (RaaS) offshoot of the notorious Rhysida group which was behind the hugely disruptive 2023 …
Ransomware Affiliate Exposes Details of 'The Gentlemen' Operation 2026-03-19 18:30 Infosecurity Magazine A ransomware affiliate known as 'hastalamuerte' has revealed operational details about a group called The Gentlemen, shedding light on its tactics, techniques and internal disputes. New research by Group-IB, published on March 19, provided rare …
Marquis confirms sensitive personal data of 672,000 people stolen in ransomware attack 2026-03-19 17:19 TechRadar Follow us Add us as a preferred source on Google Newsletter Tech Radar Get the TechRadar Newsletter Sign up for breaking news, reviews, opinion, top tech deals, and more. You are now subscribed Your newsletter sign-up was successful Subscribe to our …
ESET Research: A deep dive into EDR killers - a cornerstone of modern ransomware operations 2026-03-19 10:00 EIN Presswire EDR killers are a fundamental part of modern ransomware intrusions; affiliates prefer a short, reliable window to run encryptors rather than constantly modifying payloads. Affiliates, not operators, pick the EDR killers; larger affiliate pools lead to …
ESET Research: A deep dive into EDR killers - a cornerstone of modern ransomware operations 2026-03-19 10:00 EIN Presswire EDR killers are a fundamental part of modern ransomware intrusions; affiliates prefer a short, reliable window to run encryptors rather than constantly modifying payloads. Affiliates, not operators, pick the EDR killers; larger affiliate pools lead to …
Asahi cyberattack exposes food industry’s growing ransomware crisis 2026-03-19 05:34 Food Ingredients First Ransomware attacks on F&B companies surged in 2025, shutting down factories, halting distribution networks, and costing major players hundreds of millions of dollars in lost sales. The trend poses direct risks to ingredient supply chains, food safety …
Interlock Ransomware Exploited Cisco Firewall Flaw for Weeks 2026-03-19 02:35 Bank Information Security Fraud Management & Cybercrime , Network Firewalls, Network Access Control , Ransomware AWS Researchers Find an Interlock Server Laden With Tools David Perera (@daveperera) • March 18, 2026 Image: Anucha Cheechang/Shutterstock Ransomware hackers …
Ransomware gangs threatening to wipe data instead of double extortion 2026-03-19 00:14 Cybersecurity Insiders Ransomware attacks have evolved significantly over the past few years, moving far beyond their original purpose of simply encrypting files and demanding payment for their release. What began as a relatively straightforward cybercrime tactic has now …
Marquis says over 672,000 people had personal and financial data stolen in ransomware attack 2026-03-18 19:25 TechCrunch Marquis, a technology company used by hundreds of banks to analyze and visualize their customers’ data, says hundreds of thousands of people had their personal and sensitive financial information stolen in a ransomware attack last year. The Plano, Texas- …
Morphisec Unveils Adaptive  AI  Defense — Multi‑Layered Ransomware Protection for the AI Era 2026-03-18 13:00 EIN Presswire First‑of‑its‑kind Preemptive Cyber Defense Platform Provides Visibility into Shadow AI, Fortifies Endpoints, and Stops AI‑driven Ransomware Before Execution. NEW YORK, NY, UNITED STATES, March 18, 2026 /⁨EINPresswire.com⁩/ -- Morphisec, the global …
Google Warns Ransomware Actors Are Shifting Tactics as Profits Fall and Data Theft Rises 2026-03-18 12:14 Cyber Security News The ransomware threat landscape entered a new phase in 2025. Once a highly reliable criminal business model built on encrypting victim files and collecting ransom payments, it is now under significant financial pressure. Ransom payment rates have hit …
Medusa ransomware gang claims attacks on prominent Mississippi hospital, New Jersey county 2026-03-18 11:03 The Record A prominent ransomware gang has taken credit for a devastating attack on the biggest hospital in Mississippi and a large county in New Jersey. The Medusa ransomware operation, which experts believe is run out of Russia, said recently it was behind the …
LeakNet Ransomware Uses ClickFix via Hacked Sites, Deploys Deno In-Memory Loader 2026-03-18 08:14 The Hacker News The ransomware operation known as LeakNet has adopted the ClickFix social engineering tactic delivered through compromised websites as an initial access method. The use of ClickFix, where users are tricked into manually running malicious commands to …
Eon Launches Ransomware Protection for Cloud Databases 2026-03-17 17:33 The Channel Insider As enterprises move critical workloads to managed cloud databases, a growing ransomware recovery gap is emerging across modern cloud infrastructure. Eon is aiming to close that gap with new ransomware protection designed specifically for managed cloud …
Eon Launches Industry-First Ransomware Solution for Cloud Databases, Expanding Enterprise Data Protection Capabilities 2026-03-17 13:00 EIN Presswire NEW YORK, March 17, 2026 (GLOBE NEWSWIRE) -- As enterprises abandon on-premise servers and modernize in the cloud, a massive security gap has opened in protecting databases, which are the 'brains' of the modern economy. Today, Eon, an intelligent …
IBM Uncovers ‘Slopoly,’ Likely AI-Generated Malware Used in Hive0163 Ransomware Attack 2026-03-17 07:36 Cyber Security News A concerning development has emerged in early 2026, as IBM X-Force uncovered a likely AI-generated malware strain they named “Slopoly,” deployed during a ransomware attack by the financially motivated threat group Hive0163. The group is primarily focused …
The ransomware economy is shifting toward straight-up data extortion 2026-03-17 06:45 CyberScoop Ransomware remains a scourge that shows some signs of relenting, but incident responders and threat hunters are busier than ever as more financially-motivated attackers lean exclusively on data theft for extortion. Attacks that only involve data theft for …
Ransomware is shifting targets, many organisations are not prepared 2026-03-17 03:57 ITWeb Phila May, Executive GTM at inq. Digital. Ransomware attacks are evolving rapidly, moving beyond the simple encryption of files to target the systems organisations rely on to recover from an attack. According to Phila May, Executive GTM at inq. Digital, …
IBM Detects Hive Ransomware Using AI-Generated Malware “Slopoly” 2026-03-16 22:11 Cybersecurity Insiders Cybersecurity threats continue to evolve as ransomware groups adopt more advanced technologies. Traditionally, ransomware gangs have focused on infiltrating corporate networks, stealing sensitive data, and demanding payments through double or triple …
AI-generated malware off to a sloppy start for ransomware actors, IBM says 2026-03-16 19:21 IT Brew - New York A March 12 report from an IBM research team reveals how even ransomware actors are seeking a GenAI shortcut. The good news: IBM’s X-Force threat analysts described the AI-generated malware script they studied as “mediocre” and “unspectacular.” The bad news …
MUST READ: Ransomware attack cost Rainbow School Board $680K, documents reveal 2026-03-16 07:59 Sudbury.com A Freedom of Information request by Sudbury.com reveals Rainbow District School Board spent $680K on professional and legal services and credit monitoring following 2025 cyber incident Editor's note: This article originally ran on Feb. 26 but is being …
Payload Ransomware claims the hack of Royal Bahrain Hospital 2026-03-15 16:33 Security Affairs Payload Ransomware claims the hack of Royal Bahrain Hospital The Payload Ransomware group claims to have breached the Royal Bahrain Hospital (RBH), a leading healthcare facility in Bahrain. The Payload Ransomware group claims to have hacked the Royal …
Ransomware Attacks Hitting Japan’s Small, Midsize Firms 2026-03-14 19:45 The Japan News The Yomiuri Shimbun A message left by RansomHub on a dairy company’s system By Kyosuke Murakami and Yuji Kimura / Yomiuri Shimbun Staff Writers 2:00 JST, March 15, 2026 Last year saw 143 ransomware attacks on small and midsize companies in Japan, …
Ransomware incident responder gave info to BlackCat cybercriminals during negotiations, DOJ alleges 2026-03-14 11:23 The Record The Justice Department is accusing an incident responder of conducting cyberattacks and helping ransomware gangs negotiate higher payouts from the same victims he was working for. Angelo Martino surrendered to the U.S. Marshals on Tuesday and bonded out …
Authorities Crack Down on 45,000 Malicious IPs Powering Ransomware Attacks 2026-03-14 08:59 Cyber Security News In a massive international crackdown on cybercrime, law enforcement agencies from 72 countries have successfully dismantled over 45,000 malicious IP addresses and servers. Coordinated by INTERPOL, “Operation Synergia III” targeted the critical …
AI-assisted Slopoly malware powers Hive0163’s ransomware campaigns 2026-03-13 23:23 Security Affairs AI-assisted Slopoly malware powers Hive0163’s ransomware campaigns The Hive0163 group used AI-assisted malware called Slopoly to maintain persistent access in ransomware attacks. IBM X-Force researchers report that the financially motivated group Hive0163 …
DigitalMint negotiator minted $75 million from ransomware attacks 2026-03-13 10:54 Cybersecurity Insiders A major controversy has emerged involving DigitalMint, a company known for assisting organizations in handling ransomware incidents and negotiating with cybercriminals. The firm, which built its reputation on helping victims recover from cyber extortion, …
Ransomware attacks reported in Japan number 226 in 2025 2026-03-13 08:58 The Japan Times Japanese police have confirmed 226 cases of damage from ransomware attacks in 2025, the second-highest annual total, data from the National Police Agency showed Thursday. The number of ransomware attacks, in which perpetrators use a computer virus to …
Feds say another DigitalMint negotiator ran ransomware attacks and helped extort $75 million 2026-03-13 08:02 CyberScoop A 41-year-old South Florida man is accused of conducting at least 10 ransomware attacks and helping accomplices extort a combined $75.25 million in ransom payments while he was working as a ransomware negotiator for DigitalMint. Five of Angelo John …
Hive0163 Uses AI-Assisted Slopoly Malware for Persistent Access in Ransomware Attacks 2026-03-12 21:43 The Hacker News Ravie LakshmananMar 12, 2026Artificial Intelligence / Malware Cybersecurity researchers have disclosed details of a suspected artificial intelligence (AI)-generated malware codenamed Slopoly put to use by a financially motivated threat actor named …
AutoCAD Users may have a ransomware problem – here's what they can do 2026-03-12 20:27 IT Pro Follow us Add us as a preferred source on Google Newsletter ITPro Get the IT Pro Newsletter Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ …
France: National Cybersecurity Agency Reports Ransomware Attack Drop in 2025 2026-03-12 18:06 Infosecurity Magazine The French Cybersecurity Agency (ANSSI) has confirmed the decline of known ransomware attacks in 2025, in part due to successful law enforcement operations. The latest edition of the agency’s annual threat report, published on March 11, dives into the …
‘No money was paid’: Top executives deny secret deal over 2022 Optus ransomware hack 2026-03-12 13:33 The West Australian
'It's destructive, not ransomware': Security experts weigh in on motivation behind Stryker cyber attack 2026-03-12 13:00 IT Pro Follow us Add us as a preferred source on Google Newsletter ITPro Get the IT Pro Newsletter Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ …
NCC says ransomware rose 50% as identity risk grew 2026-03-12 08:46 Tech Informed NCC Group, one of several major cybersecurity firms to publish annual threat intelligence reports, said in its Annual Cyber Threat Intelligence Report for 2025 that global ransomware activity rose 50% year over year to 7,874 recorded incidents, with …
E2e-assure appoints ex-BP VP to bolster critical infrastructure resilience amid rising ransomware and regulatory pressure 2026-03-12 02:37 Global Banking & Finance Review Ian Henderson joins to support OT operators as they navigate increasing threats, evolving regulation, and organisational complexity Abingdon, UK; 10 March, 2026: SOC-as-a-service provider, e2e-assure, today announced the appointment of Ian Henderson as OT …
NCC Group data reveals 2025 was a record year for global ransomware 2026-03-12 01:27 The Green Sheet - California Wednesday, March 11, 2026 — 19:02:05 (UTC) NCC Group Data Reveals 2025 was a Record Year for Global Ransomware · Global ransomware attacks increased by 50% year-on-year · Qilin was the top threat actor, causing 13% of attacks · Industrials was the target …
Australian officials suspect Singaporean company paid Optus ransomware after massive 2022 data breach 2026-03-11 19:07 The West Australian Senior officials involved in the government’s response to the massive Optus data breach in 2022 believe the telco’s Singaporean owner agreed to an undisclosed payment to end the damaging ransomware incident.
How US Ransomware Policy Aims to Break Global Crime Networks 2026-03-11 18:21 Bank Information Security Anti-Money Laundering (AML) , Cybercrime , Fraud Management & Cybercrime Ex-FBI Leader Cynthia Kaiser on Sanctions, Ecosystem Disruption, Stronger Policies Chris Riotta (@chrisriotta) • March 11, 2026 Cynthia Kaiser, former FBI deputy cyber …
Cyber security alert issued as ransomware threat grows across Pacific networks 2026-03-11 05:46 Talanoa 'O Tonga Cyber security authorities in Tonga, Australia and New Zealand have issued a joint warning about a growing ransomware threat targeting organisations across the region, particularly in the health sector. Tonga’s Computer Emergency Response Team (CERT Tonga …
EV charger biz ELECQ zapped by ransomware crooks, customer contact data stolen 2026-03-10 16:55 The Register Exclusive ELECQ, maker of smart electric vehicle (EV) chargers, is warning customers that their personal details may have been stolen in a ransomware attack that encrypted and copied user data from its cloud systems. In a notice sent to customers on Monday …
Land Bank ransomware attack: Hackers demand R5.4 million in Bitcoin 2026-03-10 13:12 Cape Times Finance Minister Enoch Godongwana has confirmed that the Land and Agricultural Development Bank of South Africa was hit by a ransomware attack earlier this year. The attack occurred on January 12. The Minister revealed this in a parliamentary reply to …
What Every Contractor Should Know About Ransomware Before It Shuts Down a Job 2026-03-10 09:41 Contractor Magazine I’ve spent over 20 years working with construction companies, helping contractors protect their systems, lower risks, and keep projects moving smoothly. I have seen what happens when ransomware hits a trade company. Estimators lose access to bid documents …
ISMG Security Report: Data-Extortion Ransomware Loses Steam 2026-03-09 22:04 Bank Information Security Cybercrime , Fraud Management & Cybercrime , ISMG Security Report Revenue From Data-Extortion-Only Attacks Appear to Have Plummeted to Virtually Nil Mathew J. Schwartz (euroinfosec) • March 9, 2026 Watch the Security Report with Mathew J. Schwartz …
Ransomware attacks up 24% in food and ag industry, cyber experts advise network segmentation 2026-03-09 18:43 Brownfield Ag News News Ransomware attacks up 24% in food and ag industry, cyber experts advise network segmentation March 9, 2026 By Nicole Heslip Filed Under: 2026 Events, News Cybersecurity threats against the food and agriculture sector are rising, and vulnerabilities …
We’ve seen ransomware cost American lives. Here’s what it will actually take to stop it. 2026-03-09 16:24 CyberScoop Flights canceled. Emergency rooms shut down. Centuries-old companies shuttered. Ransomware and other similar cyberattacks have become so routine that even those serious human and economic consequences are often overlooked or easily forgotten. This lack of …
Finance Minister confirms ransomware attack on South Africa's Land Bank, R5.4 million ransom refused 2026-03-09 11:45 Briefly Finance Minister Enoch Godongwana confirmed a ransomware attack on South Africa's Land Bank, demanding five Bitcoin ransom Land Bank took swift action to isolate the affected systems and enhance security controls following the breach According to the …
Land Bank tightens security after ransomware attack 2026-03-09 10:19 ITWeb Finance minister Enoch Godongwana. The Land and Agricultural Development Bank of South Africa (Land Bank) is tightening its cyber security controls after suffering a ransomware attack in January that compromised parts of its IT environment and exposed …