Ransomware

• Why SA can’t afford to be reactive about ransomware 2025-07-11 11:42 ITWeb Pieter Nel, Sales Director – SADC, Sophos. Ransomware continues to dominate headlines – and for good reason. The cost of these attacks is growing, both in terms of financial loss and operational disruption. In South Africa, organisations are feeling the …
• Why Codefinger represents a new stage in the evolution of ransomware 2025-07-11 09:53 TechNative Forget typical ransomware! Codefinger hijacked cloud keys directly, exposing backup flaws and shared responsibility risks. Time to rethink defence. If you didn’t pay much attention to news of the recent Codefinger ransomware attack, it’s possibly because …
• French cops cuff Russian pro basketball player on ransomware charges 2025-07-11 09:23 The Register A Russian professional basketball player is cooling his heels in a French detention center after being arrested and accused of acting as a negotiator for a ransomware gang. Daniil Kasatkin, 26, was arrested at Charles de Gaulle Airport outside Paris on …
• M&S chair calls for mandatory reporting of cyber attacks after "traumatic" ransomware incident – but will it do more harm than good? 2025-07-11 08:10 IT Pro The chair of Marks and Spencer (M&S) has called for companies to be forced to disclose cyber attacks, claiming that two large British companies were hacked without any public knowledge. M&S was hit by a ransomware attack in April, causing ongoing …
• Anatomy of a Scattered Spider attack: A growing ransomware threat evolves 2025-07-11 07:18 CSO “On several occasions, the group assigned additional roles to compromised users, including the Exchange Administrator role,” according to ReliaQuest. “This role was used to monitor the inboxes of high-profile employees, enabling the attackers to stay ahead …
• Ransomware Offenders Claim Moral High Ground in New Study of Cybercriminal Justifications 2025-07-11 05:21 Psychreg 6 Reading Time: 2 minutesAlleged ransomware offenders are using elaborate justifications to excuse their crimes, according to a new study that sheds light on how cybercriminals rationalise their actions. The research offers rare insight into the mindset of …
• SafePay Ransomware Uses RDP and VPN Access to Infiltrate Organizational Networks 2025-07-11 01:54 GBHackers SafePay ransomware has become one of the most active and destructive threat actors in Q1 2025, a shocking development in the cybersecurity scene. According to the Acronis Threat Research Unit (TRU), SafePay has aggressively targeted over 200 victims …
• SafePay Ransomware Leverages RDP and VPN for Intruding Into Organizations Network 2025-07-11 00:47 Cyber Security News A new ransomware threat has emerged as one of the most formidable adversaries in the cybersecurity landscape, demonstrating unprecedented growth and sophistication in its attack methodology. SafePay ransomware, which first appeared in 2024, has rapidly …
• Ransomware nation: Why Poland is the number one target for hackers in 2025 2025-07-10 22:22 Euro Weekly News In the first half of 2025, Poland surpassed even the United States. Credit: Mr Nome Banthalak/Shutterstock Poland took the top spot in a ranking no country wants to lead: ransomware attacks. In the first half of 2025, Poland surpassed even the United …
• Pro basketball player and 4 youths arrested in connection to ransomware crimes 2025-07-10 22:21 Ars Technica Authorities in Europe have detained five people, including a former Russian professional basketball player, in connection with crime syndicates responsible for ransomware attacks. Until recently, one of the suspects, Daniil Kasatkin, played for MBA Moscow, …
• Albemarle Co. confirms ransomware attack; data of government and public school employees exposed 2025-07-10 19:12 Z95.1 - Virginia CHARLOTTESVILLE, VA (CVILLE RIGHT NOW) Albemarle County Communications Director Abbey Stumpf is revealing the cyber incident that necessitated a shutdown of internet for a few days in county offices was a ransomware attack, and county resident data such as …
• Four arrested in connection with M&S, Co-op ransomware attacks 2025-07-10 18:11 Help Net Security Four individuals suspected of having been involved in the ransomware attacks that hit UK-based retailers earlier this year have been arrested by the UK National Crime Agency. “Two males aged 19, another aged 17, and a 20-year-old female were apprehended in …
• French police arrest Russian pro basketball player on behalf of US over ransomware suspicions 2025-07-10 18:02 CyberScoop At the request of the United States, French police arrested a professional Russian basketball player who had a brief tenure at Penn State over accusations that he was part of a ransomware ring, according to overseas reports. News of the arrest of Daniil …
• Ransomware Activity Spikes Amid Qilin’s New Wave of Targeted Attacks 2025-07-10 17:22 GBHackers The Qilin group emerged as the leading player in the ransomware ecosystem, which saw a notable rise in activity during June 2025 in a startling escalation of cyber dangers. According to the latest Deep Web and Dark Web trend report, Qilin outpaced all …
• The first 24 hours after a ransomware attack – what should you do? 2025-07-10 16:46 TechRadar Pro A ransomware attack is a nightmare scenario for any organization. It’s disruptive, costly, and often deeply damaging to your reputation. How you respond in the first 24 hours can make all the difference between containment and catastrophe. In those …
• French police arrest Russian basketball player accused of ransomware: report 2025-07-10 15:40 Yahoo Finance Daniil Kasatkin of MBA-MAI in action during the Kondrashin and Belov Cup, between Zenit Saint Petersburg and MBA-MAI Moscow at Arena. (Image: Maksim Konstantinov/SOPA Images/LightRocket via Getty Images) | Image Credits:Maksim Konstantinov/SOPA …
• Four arrested by UK police over ransomware attacks on M&S, Co-op and Harrods 2025-07-10 15:14 The Record Four individuals in Britain were arrested early on Thursday morning by the National Crime Agency on suspicion of involvement in a range of ransomware attacks targeting the British retail sector earlier this year. The individuals are a 20-year-old British …
• Russian basketball player arrested in France over alleged ransomware ties 2025-07-10 15:14 The Record A Russian professional basketball player has been arrested in France at the request of the United States, which reportedly accused him of being involved in a ransomware group that allegedly targeted hundreds of American companies and federal institutions. …
• Ransomware Operations Surge Following Qilin’s New Pattern of Attacks 2025-07-10 14:45 Cyber Security News The cybersecurity landscape witnessed a dramatic shift in June 2025 as the Qilin ransomware group emerged as the dominant threat actor, orchestrating an unprecedented surge in high-value targeted attacks across multiple sectors and geographical regions. …
• NCA arrests four in connection with UK retail ransomware attacks 2025-07-10 11:43 The Register The UK's National Crime Agency (NCA) arrested four individuals suspected of being involved with the big three cyberattacks on UK retail businesses in recent weeks. The agency confirmed it arrested all four in their homes this morning. The suspects …
• “Ransomware, was ist das?” 2025-07-10 08:59 CSO Gefahr nicht erkannt, Gefahr nicht gebannt.Leremy – shutterstock.com KI-Anbieter Cohesity hat 1.000 Mitarbeitende in Deutschland zum Thema IT-Sicherheit befragt. Die erschreckendsten Ergebnisse im Überblick: 30 Prozent der Befragten haben im vergangenen …
• Ransomware attacks carry huge financial impacts – but CISO worries still aren’t stopping firms from paying out 2025-07-10 07:19 IT Pro Ransomware attacks come with an average recovery cost of $4.5 million, according to a recent survey, which also found a high proportion of businesses have fallen prey to the malware in the past year. Data from Absolute Security, which surveyed 500 CISOs …
• At U.S. request, France jails Russian basketball player Daniil Kasatkin on suspicion of ransomware conspiracy 2025-07-09 23:56 Meduza A court in Paris has jailed Russian basketball player Daniil Kasatkin on suspicion of involvement in a hacker group’s extortion activities. The 26-year-old was arrested on June 21 at Charles de Gaulle airport at the request of the United States, which has …
• Breaking Down BERT Ransomware: Lessons for Linux & ESXi Defenders 2025-07-09 20:49 Linux Security Ransomware is nothing new to us as Linux admins and infosec folks—it’s pretty much part of the modern threat landscape now. But when I say "BERT ransomware," you may want to sit up and pay closer attention. Officially tracked as "Water …
• M&S chair reveals ransomware group DragonForce behind cyber attack 2025-07-09 19:58 Apparel Resources Image Courtesy: Justdial M&S Chair Archie Norman has confirmed that the company believes the ransomware group DragonForce was responsible for its recent cyber attack. Addressing a parliamentary select committee on 8th July, Norman stated that “loosely …
• M&S chairman names hackers and ransomware group behind April cyber attack 2025-07-09 17:53 The Sun MARKS & Spencer’s cyber attack was linked to hackers Scattered Spider and ransomware group DragonForce, according to its chairman. DragonForce is believed to rent out software that locks files and then demands payment to unlock them. M&S boss …
• M&S Chair Details Ransomware Attack, Declines to Confirm if Payment Was Made 2025-07-09 14:56 Infosecurity Magazine Marks & Spencer (M&S) chairman Archie Norman has confirmed the attack on the retailer’s systems in April was ransomware-related, but declined to say whether a payment was made to the threat actors. Norman made the comments during oral evidence to a …
• Ransomware Attack Stops Nova Scotia Power Meter Readings 2025-07-09 14:55 Infosecurity Magazine Nova Scotia Power has revealed that a recent ransomware attack has prevented customer meter readings from being recorded, impacting billing charges. The Canadian utilities provider said that after initially pausing billing, it is now sending most customers …
• IBM's new Power11 server chips are focused on two things: AI and ransomware 2025-07-09 13:41 Tom's Hardware It can be easy to forget that x86, Arm, and RISC-V aren't the only instruction set architectures on the planet. IBM today offered its periodic reminder that its Power ISA exists with the announcement of new Power11 hardware that, among other things, …
• Iranian group Pay2Key.I2P ramps Up ransomware attacks against Israel and US with incentives for affiliates 2025-07-09 13:27 Security Affairs Iranian group Pay2Key.I2P ramps Up ransomware attacks against Israel and US with incentives for affiliates An Iranian ransomware group, Pay2Key.I2P, has intensified attacks on U.S. and Israeli targets, offering affiliates higher profits. The Iranian …
• AI overtakes ransomware as top cyber security concern 2025-07-09 12:45 ITWeb Jason Oehley, regional sales manager at Arctic Wolf. (Image: Supplied) AI tops the list of cyber security concerns for the first time this year, according to the Arctic Wolf State of Cybersecurity: 2025 Trends Report. This emerged during a webinar hosted …
• Trend Micro flags BERT: A rapidly growing ransomware threat 2025-07-09 12:22 CSO “BERT exploits weak passwords, poor endpoint protection, excessive admin access, lack of monitoring, and insecure backups. It disables defenses, moves quickly, and can even target virtual machines, making recovery harder,” said Pareekh Jain, CEO at …
• Ingram Micro restarts orders – for some – following ransomware attack 2025-07-09 09:49 The Register Ingram Micro says it is gradually reactivating customer's ordering capabilities across the world, region by region, now its ransomware attack is thought to be "contained". The distie's update on Tuesday confirmed that three days after …
• Iranian ransomware crew reemerges, promises big bucks for attacks on US or Israel 2025-07-09 06:49 The Register An Iranian ransomware-as-a-service operation with ties to a government-backed cyber crew has reemerged after a nearly five-year hiatus, and is offering would-be cybercriminals cash to infect organizations in the US and Israel. The malware, an updated …
• ISTELIVE 25: District Shares Lessons Learned From a Ransomware Attack 2025-07-09 00:11 EdTech Magazine   Assemble Your Team and Assess the Damage Following the Attack Gosch assumed her role at Judson ISD in May 2021. Six weeks later, she got a call that every IT professional dreads: There had been a ransomware attack. The first action Gosch and her team …
• Gloucester County, Va., Responds to Ransomware Attack 2025-07-08 23:39 Government Technology A recent ransomware attack in Gloucester County, Va., has compromised residents’ personal information and officials are monitoring its aftermath amid a state and federal investigation. The county’s Information Technology Department (ITD) detected the …
• Iranian ransomware group offers bigger payouts for attacks on Israel, US 2025-07-08 22:40 The Record An Iranian ransomware gang has ramped up operations amid heightened tensions in the Middle East, offering larger profit shares to affiliates who carry out cyberattacks against Israel and the U.S., researchers said. The group, known as Pay2Key.I2P, is …
• BERT Ransomware Can Force Shutdown of ESXi Virtual Machines to Hinder Recovery 2025-07-08 22:23 GBHackers A newly identified ransomware group, BERT, tracked by Trend Micro as Water Pombero, has emerged as a significant threat to organizations across Asia, Europe, and the US. First observed in April, BERT targets critical sectors such as healthcare, technology, …
• M&S calls for mandatory ransomware reporting 2025-07-08 22:12 Computer Weekly Marks & Spencer chairman Archie Norman has described the recent ransomware attack on the retailer’s systems as something akin to an “out-of-body experience” as he called for cyber attack victims to be brave, bite the bullet, and be open and transparent …
• The Rise of Ransomware-as-a-Service (RaaS) 2025-07-08 21:05 SecureWorld Ransomware is no longer the work of lone-wolf hackers with deep technical chops. It's become a full-fledged business model, especially with agentic AI entering the fold. Ransomware-as-a-Service (RaaS) has transformed cybercrime into an accessible, …
• Marks & Spencer chair refuses to say if retailer paid hackers after ransomware attack 2025-07-08 15:11 TechCrunch The chairman of U.K. retail giant Marks & Spencer declined to tell a panel of lawmakers whether the company paid a hacking group following a ransomware attack earlier this year.   “We’ve said that we are not discussing any of the details of our …
• IBM Launches Power11 Chips with Ransomware Defence and Zero Downtime 2025-07-08 13:21 TechEconomy Advertisements IBM has upgraded the Power chip series launched since 2020, unveiling Power11, a data centre chip built for industries where performance, resilience, and security cannot be compromised.  From July 25, the new Power11 systems will hit the …
• New Bert Ransomware Group Strikes Globally with Multiple Variants 2025-07-08 13:21 Infosecurity Magazine The recently emerged Bert ransomware group is actively targeting organizations in the US, Asia and Europe using multiple variants and rapidly evolving tactics to evade detection, research from Trend Micro has found. Bert has been observed targeting …
• Morphisec warns of Iran-backed ransomware campaign driven by political motives 2025-07-08 13:02 SiliconANGLE A new report out today from endpoint security firm Morphisec Inc. reveals the resurgence of Pay2Key, a ransomware operation with ties to Iran’s Fox Kitten advanced persistent threat group, now rebranded as Pay2Key.I2P. Originally exposed in 2020, the …
• M&S believes DragonForce behind ransomware attack, says chairman 2025-07-08 11:30 Channel News Asia LONDON :British retailer Marks & Spencer believes the ransomware operation behind the April cyberattack which forced it to suspend online shopping for nearly seven weeks was a group called "DragonForce", its chairman said on Tuesday. Archie …
• The Internal Blast Radius of Ransomware Attacks: Why Cyber Resilience Must Start with People 2025-07-08 07:49 Security Magazine Whenever a new ransomware attack strikes, headlines and industry discussions will understandably center on the number of operational days lost to disruption, volumes of data stolen, and projected costs. This stands to reason as ransomware attacks have a …
• Ransomware Attack Cripples Ingram Micro, Disrupts Global Services 2025-07-08 06:16 Information Security Buzz Ingram Micro has confirmed a ransomware attack that has forced systems offline and disrupted core services across its global operations. The breach, first reported as an unexplained outage on 3 July has now been linked to the SafePay ransomware group, one …
• Hidden Costs Of Ransomware: ANZ Businesses Admit To Paying Despite ‘No Payment’ Policies 2025-07-08 05:25 Scoop Tuesday, 8 July 2025, 4:53 pm Press Release: Commvault Ransomware is revealing the fragility of policy over panic. New research released today by Commvault has exposed how many Australian and New Zealand organisations are abandoning their official stances …
• Ingram Micro responds to ransomware incident impacting internal systems 2025-07-08 03:10 IT Brief - New Zealand Ingram Micro has confirmed a ransomware attack targeting its internal systems, leading to operational disruption and an ongoing effort to restore affected services. The global technology distributor issued a statement acknowledging the incident and …
• Hacker 'turf war' unfolding as Russian DragonForce ransomware gang drama could lead to 'double extortions,' making life even worse for potential victims 2025-07-08 01:16 Tom's Hardware Ransomware is a powerful tool used by weak people to extract make-believe money, primarily used for dark web drug buys and Ponzi schemes, from organizations that haven't implemented proper security and backup protocols in the year 2025. It comes as no …