ransomware Archives • Page 6 of 11 • Daily CyberSecurity

The SocGholish Malware Economy: Stealthy “Fake Updates” Fuel a Global Cybercrime Ecosystem SocGholish, Initial Access Broker

The SocGholish Malware Economy: Stealthy “Fake Updates” Fuel a Global Cybercrime Ecosystem

Do Son August 8, 2025

Silent Push Threat Analysts have detailed one of today’s most pervasive cyber threats—SocGholish—exposing its deep ties to...

Google Admits Salesforce Breach, Joins Chanel & Allianz on ShinyHunters Victim List

Do Son August 7, 2025

A recent surge of persistent attacks targeting Salesforce CRM customer management systems has emerged—not due to vulnerabilities...

BYOVD Attack: A New AV Killer Exploits a Legitimate Driver to Neutralize Defenses for MedusaLocker Ransomware

Do Son August 7, 2025

A recent incident response operation in Brazil has revealed a stealthy and destructive threat abusing the trusted...

The AK47 Project: New Report Ties Storm-2603 to LockBit and Warlock Ransomware, SharePoint Exploits

Do Son August 7, 2025

In a revelation, Unit 42 has exposed a financially motivated cyber threat actor cluster, dubbed CL-CRI-1040, with...

From Bing Search to Ransomware in <44 Hours: Bumblebee Loader Deploys Destructive Akira Ransomware via SEO Poisoning Bumblebee Malware, Akira Ransomware

From Bing Search to Ransomware in <44 Hours: Bumblebee Loader Deploys Destructive Akira Ransomware via SEO Poisoning

Do Son August 6, 2025

In a reminder that even a Google or Bing search can be the first step in a...

Critical HFS 2.x Flaw (CVE-2024-23692) Actively Exploited: Legacy File Server Becomes a Ransomware Backdoor Ollama Heap Leak CVE-2026-5757 Anritsu Vulnerability Authentication Bypass Gootloader Malware Malformed ZIP Evasion Blender Malware, StealC V2 Lectora, XSS CVE-2025-9125 HFS RCE, Template Injection Arch Linux Malware, CHAOS RAT CVE-2024-56404 - CVE-2024-39327 CVE-2025-2538

Ollama Heap Leak CVE-2026-5757 Anritsu Vulnerability Authentication Bypass Gootloader Malware Malformed ZIP Evasion Blender Malware, StealC V2 Lectora, XSS CVE-2025-9125 HFS RCE, Template Injection Arch Linux Malware, CHAOS RAT CVE-2024-56404 - CVE-2024-39327 CVE-2025-2538

Critical HFS 2.x Flaw (CVE-2024-23692) Actively Exploited: Legacy File Server Becomes a Ransomware Backdoor

Do Son August 6, 2025

The Imperva Threat Research team sounded the alarm on a coordinated exploitation campaign targeting outdated instances of...

Urgent Zero-Day Warning: SonicWall VPNs Under Attack, Akira Ransomware Deployed Within Hours hackerbot-claw campaign Cisco RCE Exploit CVE-2026-20045 SonicWall VPN, Akira Ransomware Nobelium Apache Tomcat, Apache Camel

hackerbot-claw campaign Cisco RCE Exploit CVE-2026-20045 SonicWall VPN, Akira Ransomware Nobelium Apache Tomcat, Apache Camel

Urgent Zero-Day Warning: SonicWall VPNs Under Attack, Akira Ransomware Deployed Within Hours

Do Son August 4, 2025

Huntress has issued a critical alert about what appears to be a zero-day vulnerability in SonicWall Secure...

ShadowSyndicate’s Global Ransomware Empire Blurs Lines Between Cybercrime and Geopolitical Espionage ShadowSyndicate, Ransomware-as-a-Service

ShadowSyndicate, Ransomware-as-a-Service

ShadowSyndicate’s Global Ransomware Empire Blurs Lines Between Cybercrime and Geopolitical Espionage

Do Son August 4, 2025

In a recent investigation, cybersecurity firm Intrinsec has illuminated the sprawling infrastructure of ShadowSyndicate, a clandestine threat...

Storm-2603: Chinese APT Deploys Warlock & LockBit with AK47C2 Framework Antivirus Terminator supported arguments when run without parameters

Storm-2603: Chinese APT Deploys Warlock & LockBit with AK47C2 Framework

Do Son August 4, 2025

Check Point Research (CPR) has detailed a previously undocumented Chinese-affiliated threat actor—Storm-2603—linked to aggressive campaigns exploiting Microsoft...

Interlock Ransomware Strikes: eSentire Exposes Multi-Stage Payload and ClickFix Social Engineering Interlock Ransomware, ClickFix Technique

Interlock Ransomware, ClickFix Technique

Interlock Ransomware Strikes: eSentire Exposes Multi-Stage Payload and ClickFix Social Engineering

Do Son August 2, 2025

The eSentire Threat Response Unit (TRU) exposed a detailed and technically sophisticated ransomware campaign orchestrated by the...

Cisco Talos Q2 Report: Phishing & Ransomware Dominate, with Qilin Using Deprecated PowerShell 1.0 Qilin Ransomware, Phishing & Ransomware

Cisco Talos Q2 Report: Phishing & Ransomware Dominate, with Qilin Using Deprecated PowerShell 1.0

Do Son August 1, 2025

Cisco Talos has released its latest Threat Intelligence Report for Q2 2025, revealing a threat landscape increasingly...

LockBit Ransomware Evolves: New Stealthy Tactics Use DLL Sideloading & Masquerading to Bypass Defenses LockBit Ransomware, DLL Sideloading

LockBit Ransomware Evolves: New Stealthy Tactics Use DLL Sideloading & Masquerading to Bypass Defenses

Do Son August 1, 2025

LockBit isn’t just another ransomware group—it’s an evolving threat that continues to adapt its tactics to evade...

FunkSec Ransomware Decryptor Released Free: Victims Can Now Recover Files After Group Goes Dormant FunkSec Decryptor, Ransomware Recovery

FunkSec Ransomware Decryptor Released Free: Victims Can Now Recover Files After Group Goes Dormant

Do Son August 1, 2025

The cybersecurity firm Gen Digital—formerly known as Symantec and Norton—has recently submitted the decryption key and tool...

Global Cyber Authorities Warn of Escalating Threat from Scattered Spider Group Scattered Spider, Cybercrime Advisory

Global Cyber Authorities Warn of Escalating Threat from Scattered Spider Group

Do Son July 30, 2025

In a joint cybersecurity advisory, authorities from the United States, Canada, the United Kingdom, and Australia have...

Gunra Ransomware Expands to Linux: New Variant Unleashes 100-Thread Encryption & Stealthy Tactics Gunra Ransomware, Linux Ransomware

Gunra Ransomware Expands to Linux: New Variant Unleashes 100-Thread Encryption & Stealthy Tactics

Do Son July 30, 2025

Trend Micro has issued a spotlight on the evolving Gunra ransomware, which has extended its reach to...

UK Moves to Ban Ransomware Payments for Public Sector Bodies, Criminalizing Extortion Compliance INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

UK Moves to Ban Ransomware Payments for Public Sector Bodies, Criminalizing Extortion Compliance

Do Son July 24, 2025

Ransomware continues to inflict substantial damage each year on businesses, educational institutions, government agencies, and other organizations....

Kingpin of xss.is Cybercrime Forum Arrested in Ukraine After Europol-Led Sting xss.is Takedown, Cybercrime Forum

Kingpin of xss.is Cybercrime Forum Arrested in Ukraine After Europol-Led Sting

Do Son July 23, 2025

A joint operation led by the French Police and Paris Prosecutor, in close cooperation with Ukrainian authorities...

CISA, FBI Warn of Interlock Ransomware, Actively Targeting Businesses & Critical Infrastructure Interlock Ransomware, CISA Advisory

CISA, FBI Warn of Interlock Ransomware, Actively Targeting Businesses & Critical Infrastructure

Do Son July 23, 2025

In a new joint cybersecurity advisory issued on July 22, 2025, the Cybersecurity and Infrastructure Security Agency...

NailaoLocker Ransomware: Chinese SM2 Crypto and Built-in Decryptor Raise Questions

Do Son July 22, 2025

FortiGuard Labs uncovered a ransomware variant. Dubbed NailaoLocker, this malware isn’t just another file-encrypting threat. It brings...

KAWA4096: New Ransomware Blends Qilin & Akira Tactics, Hits US and Japan KAWA4096 Ransomware, Hybrid Ransomware

KAWA4096: New Ransomware Blends Qilin & Akira Tactics, Hits US and Japan

Do Son July 19, 2025

A new ransomware family known as KAWA4096 has surfaced, blending tactics from notorious groups like Qilin and...

Critical Alert 2 Active Exploits Detected Today