Iranian group Pay2Key.I2P ramps Up ransomware attacks against Israel and US with incentives for affiliates Pierluigi Paganini July 09, 2025 An Iranian ransomware group, Pay2Key.I2P, has intensified attacks on U.S. and Israeli targets, offering affiliates higher profits. The Iranian ransomware group Pay2Key.I2P is stepping up attacks on U.S. and Israeli targets, luring affiliates with higher...Read More
“BERT exploits weak passwords, poor endpoint protection, excessive admin access, lack of monitoring, and insecure backups. It disables defenses, moves quickly, and can even target virtual machines, making recovery harder,” said Pareekh Jain, CEO at EIIRTrend & Pareekh Consulting. BERT ransomware is dangerous despite its simplicity because it’s fast, disables security tools and firewalls, and...Read More
The IBM Power Cyber Vault solution is designed to provide protection against cyberattacks such as data corruption and encryption with proactive immutable snapshots that are automatically captured, stored, and tested on a custom-defined schedule, IBM said. Power11 also uses NIST-approved built-in quantum-safe cryptography designed to help protect systems from harvest-now, decrypt-later attacks as well as firmware integrity...Read More
Ingram Micro has shared its progress in its recovery from last week’s ransomware attack, indicating the incident has been contained and remediated. The distributor hit the headlines over the weekend after a cyber assault that took some of its systems offline. Over the past couple of days, the firm has been working to restore...Read More
Ingram Micro says it is gradually reactivating customer’s ordering capabilities across the world, region by region, now its ransomware attack is thought to be “contained”. The distie’s update on Tuesday confirmed that three days after pulling systems offline to handle its ransomware attack: “we believe the unauthorized access to our systems in connection with the...Read More
Marks & Spencer (M&S) chairman Archie Norman has confirmed the attack on the retailer’s systems in April was ransomware-related, but declined to say whether a payment was made to the threat actors. Norman made the comments during oral evidence to a Business and Trade Sub-Committee on Economic Security, Arms and Export Controls Committee hearing at...Read More
An Iranian ransomware-as-a-service operation with ties to a government-backed cyber crew has reemerged after a nearly five-year hiatus, and is offering would-be cybercriminals cash to infect organizations in the US and Israel. The malware, an updated version of 2020’s Pay2Key, previously linked to Tehran’s Pioneer Kitten, now uses several of the Mimic ransomware’s capabilities, according...Read More
Ingram Micro tells some employees to work from home as it tackles cyberattack Unconfirmed reports claim the attack is the work of SafePay No information about stolen data yet Ingram Micro, a global distributor of information technology (IT) products and services, has confirmed it suffered a ransomware attack which forced it to shut down parts...Read More
The threat group reportedly responsible for the attack against Ingram Micro is a new and highly active player in ransomware. The threat group SafePay, which is reportedly responsible for the attack against Ingram Micro, is a new and highly active player in ransomware, according to security researchers. IT distribution giant Ingram Micro confirmed Saturday evening...Read More
Ingram Micro, the $47 billion annual revenue technology reseller, has been hit by ransomware, delaying shipments to customers globally. The IT channel heavyweight provides hardware, financing, and lifecycle management. Particularly worrying some security observers, it also supports large numbers of Managed Service Providers (MSPs). Confirming the attack, the firm said on June 5 that it...Read More
