14 threats in this category
Akira ransomware listed Apache OpenOffice on their leak site claiming 23GB of stolen data including employee PII (addresses, DOB, driver's licenses, SSN, credit cards), financial records, and internal…
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
GovInfoSecurity reports Everest threatened release of 1.5M Dublin Airport passenger records, linked to the September Muse software incident affecting multiple EU airports. Conflicting narratives sugge…
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
Industrial Cyber notes Qilin reached 700 attacks in 2025, with heavy impact on manufacturing, government, education, and healthcare. Data theft totals exceed 116 TB, with the U.S. the most targeted. A…
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
Infosecurity Magazine reports Qilin publishes 40+ victim listings monthly, with manufacturing most targeted. Cisco Talos observed use of Cyberduck for exfiltration, dual encryptors, and abuse of VPN a…
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
ReliaQuest reports RaaS operators increasingly bundle AI‑powered tooling for affiliates, shrinking breakout time from 48 minutes in 2024 to ~18 minutes mid‑2025. LockBit and DragonForce gain share wit…
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
Wordfence details multiple PHP malware samples that abuse variable functions and cookie checks to obfuscate execution and bypass signature-based detection. By reconstructing function names at runtime …
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
Australian hydraulics supplier Aussie Fluid Power confirmed a security incident following Anubis’ claim of a ransomware attack. The company engaged forensics, reported to ACSC, and is notifying potent…
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
Askul, a major Japanese retailer and logistics operator, suspended online orders and shipments across brands (Askul, Lohaco, Soloel Arena) following a ransomware attack that crippled systems. Ripple e…
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
Cross-border malware campaign expanding to APAC regions with HoldingHands RAT and layered evasion. Source: SecurityAffairs.
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
New .NET backdoor using LNK+DLL LotL techniques to target Russian industrial and commercial sectors. Source: The Hacker News.
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
International takedown of SIM-rental infrastructure enabling mass fraud and account creation. Source: GBHackers.
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
Mass doxing of US federal law enforcement officials by criminal collectives, exposing sensitive personal data. Source: WIRED.
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
Actor-linked Telegram postings released spreadsheets with personal information of government employees. Source: Malware.news.
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
Clop ransomware listed Harvard University on its leak site, claiming imminent data release. The group is known for double extortion and large-scale campaigns like MOVEit and Accellion.
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware