Published On : 2025-07-18 Ransomware of the week CYFIRMA Research and Advisory Team would like to highlight ransomware trends and insights gathered while monitoring various forums. This includes multiple – industries, geography, and technology – that could be relevant to your organization. Type: RansomwareTarget Technologies: Windows IntroductionCYFIRMA Research and Advisory Team has found BlackFL Ransomware...Read More
The U.S. Department of Justice (DOJ) has made significant strides in dismantling a massive ransomware ring, tracing over 1,600 Bitcoin (BTC) to an Armenian national, Karen Serobovich Vardanyan, who has been charged in connection with a widespread cyber extortion campaign involving Ryuk ransomware. The FBI’s investigation, which has been ongoing for several months, has revealed...Read More
New data has revealed that publicly disclosed ransomware attacks increased by 63% in the second quarter of 2025 compared to the same period last year, according to figures from BlackFog. The second quarter of 2025 recorded 276 publicly disclosed ransomware incidents, reportedly the highest number for any Q2 since BlackFog began tracking data in 2020....Read More
‘Let me address a very important aspect as we talk about operation efficiency,’ says Sanjib Sahoo, president of the global platform group at Ingram Micro. ‘About two weeks ago, we experienced a ransomware incident in our internal systems. We took proactive actions and immediately turned down our systems. We worked with some cybersecurity third-party experts...Read More
‘Let me address a very important aspect as we talk about operation efficiency,’ says Sanjib Sahoo, president of the global platform group at Ingram Micro. ‘About two weeks ago, we experienced a ransomware incident in our internal systems. We took proactive actions and immediately turned down our systems. We worked with some cybersecurity third-party experts...Read More
The notorious malware loader Matanbuchus has been increasingly leveraged in highly targeted cyberattacks, with the latest iteration Matanbuchus 3.0 demonstrating heightened sophistication and destructive potential. In a recent campaign observed in July 2025, attackers exploited Microsoft Teams calls, masquerading as legitimate IT helpdesk representatives to lure employees into launching malicious scripts. During these calls, Quick...Read More
Group says it hacked into Belk’s system, exposing Social Security numbers, medical information Winston-Salem Journal Source link .........................Read More
The OVERSTEP backdoor, written in C, is specifically designed for SonicWall SMA 100 series appliances. It injects itself into the memory of other processes via the /etc/ld.so.preload file and then hijacks standard file system functions such as open, open64, readdir, readdir64, and write. This allows it to hide its components on the system. The backdoor’s...Read More
