Security News

CISA and FBI: Ghost ransomware breached orgs in 70 countries
2025-02-19 20:55

CISA and the FBI said attackers deploying Ghost ransomware have breached victims from multiple industry sectors across over 70 countries, including critical infrastructure organizations. [...]

US newspaper publisher uses linguistic gymnastics to avoid saying its outage was due to ransomware
2025-02-18 17:00

Called it an 'incident' in SEC filing, but encrypted apps and data exfiltration suggest Lee just can’t say the R word US newspaper publisher Lee Enterprises is blaming its recent service...

BlackLock ransomware onslaught: What to expect and how to fight it
2025-02-18 16:19

BlackLock is on track to become the most active ransomware-as-a-service (RaaS) outfit in 2025, according to ReliaQuest. Its success is primarily due to their unusually active presence and good...

Lee Enterprises newspaper disruptions caused by ransomware attack
2025-02-18 12:35

Newspaper publishing giant Lee Enterprises has confirmed that a ransomware attack is behind ongoing disruptions impacting the group's operations for over two weeks. [...]

RansomHub Becomes 2024’s Top Ransomware Group, Hitting 600+ Organizations Globally
2025-02-14 10:17

The threat actors behind the RansomHub ransomware-as-a-service (RaaS) scheme have been observed leveraging now-patched security flaws in Microsoft Active Directory and the Netlogon protocol to...

Chinese spies suspected of 'moonlighting' as tawdry ransomware crooks
2025-02-14 02:19

Some employees steal sticky notes, others 'borrow' malicious code A crew identified as a Chinese government-backed espionage group appears to have started moonlighting as a ransomware player –...

Chinese espionage tools deployed in RA World ransomware attack
2025-02-13 14:31

A China-based threat actor, tracked as Emperor Dragonfly and commonly associated with cybercriminal endeavors, has been observed using in a ransomware attack a toolset previously attributed to...

RA World Ransomware Attack in South Asia Links to Chinese Espionage Toolset
2025-02-13 11:58

An RA World ransomware attack in November 2024 targeting an unnamed Asian software and services company involved the use of a malicious tool exclusively used by China-based cyber espionage groups,...

Ransomware isn't always about the money: Government spies have objectives, too
2025-02-12 19:30

Analysts tell El Reg why Russia's operators aren't that careful, and why North Korea wants money AND data Feature Ransomware gangsters and state-sponsored online spies fall on opposite ends of the...

Sarcoma ransomware claims breach at giant PCB maker Unimicron
2025-02-12 19:24

A relatively new ransomware operation named 'Sarcoma' has claimed responsibility for an attack against the Unimicron printed circuit boards (PCB) maker in Taiwan. [...]