ransomware Archives • Daily CyberSecurity

International Takedown Smashes Massive Crypto Laundering Service crypto laundering service ransomware gangs

International Takedown Smashes Massive Crypto Laundering Service

Do Son June 12, 2026

Recently, international law enforcement agencies dismantled a massive crypto laundering service trusted by global cybercriminals. This coordinated...

CISA Active Exploit Catalog Expands with Critical Gateway Flaws CISA active exploit catalog critical gateway flaws CVE-2023-27532 & CVE-2024-37383

CISA active exploit catalog critical gateway flaws CVE-2023-27532 & CVE-2024-37383

CISA Active Exploit Catalog Expands with Critical Gateway Flaws

Do Son June 9, 2026

Federal Registry Alerts Organizations to Real-World Cyber Risks The Cybersecurity and Infrastructure Security Agency updated its primary...

Operation Saffron: Authorities Smash ‘First VPN’ Cybercrime Network First VPN service takedown

Operation Saffron: Authorities Smash ‘First VPN’ Cybercrime Network

Do Son May 24, 2026

International law enforcement agencies have achieved a massive victory against underground ransomware networks. Specifically, authorities completely dismantled...

Cybersecurity Pros Sentenced for Running ALPHV BlackCat Ransomware ALPHV BlackCat Affiliates Ransomware Insider Threat

Cybersecurity Pros Sentenced for Running ALPHV BlackCat Ransomware

Do Son May 2, 2026

Two American cybersecurity professionals were sentenced today to four years each in federal prison. Leveraging the very...

44,000 IPs Hijacked: cPanel’s 9.8 CVSS Authentication Bypass Triggers Global Ransomware Surge cPanel Authentication Bypass CVE-2026-41940

44,000 IPs Hijacked: cPanel’s 9.8 CVSS Authentication Bypass Triggers Global Ransomware Surge

Do Son May 2, 2026

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning, adding a critical vulnerability in...

Broken by Design: How VECT 2.0 Ransomware Becomes a Permanent Data Wiper

Do Son April 30, 2026

A new investigation by Check Point Research (CPR) has revealed that the “ambitious” VECT 2.0 ransomware—currently targeting...

Tactical Evolution: Trigona Ransomware Debuts Custom Exfiltration Armory Trigona Ransomware Custom Exfiltration Tool

Tactical Evolution: Trigona Ransomware Debuts Custom Exfiltration Armory

Do Son April 25, 2026

The ransomware landscape is witnessing a sophisticated shift in how data is stolen. While most cybercriminal groups...

The Rise of Payouts King and the Resurrection of BlackBasta Payouts King Ransomware BlackBasta Successor

The Rise of Payouts King and the Resurrection of BlackBasta

Do Son April 22, 2026

Following the high-profile disbandment of the BlackBasta ransomware group in early 2025, security researchers at Zscaler ThreatLabz...

The Negotiator Turned Traitor: Insider Betrayal in the BlackCat Ransomware Ring NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

The Negotiator Turned Traitor: Insider Betrayal in the BlackCat Ransomware Ring

Do Son April 21, 2026

A Florida man has admitted to playing both sides of the ransomware fence. Angelo Martino, 41, a...

JanaWare’s 5-Year Geofenced Ransomware Reign JanaWare Ransomware Geofenced Malware

JanaWare’s 5-Year Geofenced Ransomware Reign

Do Son April 20, 2026

A low-profile but remarkably persistent threat cluster has been unmasked by the Acronis TRU team, revealing a...

Under Fire Again: Rockstar Games Hit by ShinyHunters in Massive Snowflake Data Breach Rockstar Games Snowflake Breach

Under Fire Again: Rockstar Games Hit by ShinyHunters in Massive Snowflake Data Breach

Do Son April 13, 2026

The preeminent game developer Rockstar Games appears to have fallen victim once more to a cyber incursion....

Qilin’s “EDR Killer” Dismantles 300+ Security Drivers EDR Killer Qilin Ransomware

Qilin’s “EDR Killer” Dismantles 300+ Security Drivers

Do Son April 9, 2026

A technical deep-dive from Cisco Talos has exposed a sophisticated “EDR killer” deployed during Qilin ransomware attacks,...

The Ransomware ‘Locksmith’: Russian Access Broker Aleksei Volkov Sentenced to 7 Years for $9M Cyber Heist Initial Access Broker Aleksei Volkov

The Ransomware ‘Locksmith’: Russian Access Broker Aleksei Volkov Sentenced to 7 Years for $9M Cyber Heist

Do Son March 24, 2026

A 26-year-old Russian national has been sentenced to 81 months in prison for his pivotal role in...

Europe’s Cloud Leviathan Pierced: The Alleged 1.6 Million Dossier Exfiltration at OVHcloud OVHcloud data breach 2026

Europe’s Cloud Leviathan Pierced: The Alleged 1.6 Million Dossier Exfiltration at OVHcloud

Do Son March 24, 2026

The preeminent European cloud computing sovereign, OVHcloud, has recently been besieged by a catastrophic security breach. Malefactors...

Warlock Ransomware Evolves: New Tools and Kernel-Level Evasion Threaten Global Sectors EV2GO Charging Platform ICSA-26-057-04 Lazarus Group, Crypto Hacks LazyStealer

EV2GO Charging Platform ICSA-26-057-04 Lazarus Group, Crypto Hacks LazyStealer

Warlock Ransomware Evolves: New Tools and Kernel-Level Evasion Threaten Global Sectors

Do Son March 19, 2026

The Warlock ransomware group (also tracked as Water Manaul) has significantly sharpened its claws. A recent deep-dive...

Exploited in the Wild: Interlock Ransomware Weaponizes Critical 10.0 CVSS Cisco Zero-Day Interlock Ransomware Cisco Zero-Day

Exploited in the Wild: Interlock Ransomware Weaponizes Critical 10.0 CVSS Cisco Zero-Day

Do Son March 19, 2026

Amazon threat intelligence has uncovered an active Interlock ransomware campaign that exploited a critical vulnerability in Cisco...

Agencies Issue Urgent Warning on INC Ransom Healthcare Attacks INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

Agencies Issue Urgent Warning on INC Ransom Healthcare Attacks

Do Son March 10, 2026

A new joint advisory released by the Australian Cyber Security Centre (ACSC), CERT Tonga, and New Zealand’s...

From Chat App to Dark Web: How Telegram Became the New Hub for Cybercrime CVE-2024-22394

From Chat App to Dark Web: How Telegram Became the New Hub for Cybercrime

Do Son March 3, 2026

For millions of people around the world, Telegram is a secure and convenient way to chat with...

Unpatched ActiveMQ Flaw Leads to Repeat Breach and LockBit Ransomware LockBit 3.0 Ransomware

Unpatched ActiveMQ Flaw Leads to Repeat Breach and LockBit Ransomware

Do Son February 25, 2026

In the world of cybersecurity, “eviction” is rarely the end of the story. A new case study...

Silent Killer: Black Basta Bundles “BYOVD” Driver to Blind Antivirus INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

Silent Killer: Black Basta Bundles “BYOVD” Driver to Blind Antivirus

Do Son February 10, 2026

The notorious Black Basta ransomware group has upgraded its arsenal with a dangerous new capability, embedding defense...