Manufacturing remains prime ransomware target in Q2 as new groups, state-aligned actors reshape industrial threat landscape  Industrial Cyber Source link .........................Read More

Korean firms YES24, SGI, Welcome Finance endure ransomware attacks and data breaches – CHOSUNBIZ  Chosun Biz Source link .........................Read More

Researchers at software supply chain security outfit Safety think they’ve found malware that targets Russian cryptocurrency developers, and perhaps therefore Russia’s state-linked ransomware crews Safety’s head of research Paul McCarty last week revealed his discovery of npm packages that he wrote “targeted the Solana cryptocurrency ecosystem and pretend to ‘scan’ for Solana SDK components.” The...Read More

Huntress analysts have tracked a fresh ransomware incident involving KawaLocker, also known as KAWA4096. The variant is new, but the method is familiar. Attackers gained access, disabled defenses, and moved to encrypt files. Ransomware families surface often. A year ago, Huntress reported on ReadText34. Just last month, a never-before-seen strain called Crux appeared. KawaLocker joins...Read More

The cybersecurity landscape faces a new sophisticated threat as the Crypto24 ransomware group demonstrates an alarming evolution in attack methodology, seamlessly blending legitimate administrative tools with custom-developed malware to execute precision strikes against high-value targets. This emerging ransomware operation has successfully compromised organizations across Asia, Europe, and the United States, with a particular focus on...Read More

Nearly three weeks ago, the City of St. Paul detected a cyberattack that eventually impacted a variety of city services. RELATED: St. Paul cyberattack: Organization takes credit for ransomware attack on city, releases some data The Minnesota National Guard special cyber team, called in by Gov. Tim Walz at the end of July, finished its...Read More

The U.S. Justice Department authorized the seizure of more than $2.8 million in cryptocurrency, cash, and other assets from a suspected ransomware operator, according to an Aug. 14 announcement. Federal prosecutors unsealed six warrants tied to Ianis Aleksandrovich Antropenko, charging him with conspiring to commit computer fraud and abuse, committing computer fraud and abuse, and...Read More

By Aislinn Keely ( August 15, 2025, 10:46 PM EDT) — Federal prosecutors say they’ve seized $2.8 million in crypto from accounts controlled by an alleged ransomware attacker…. Law360 is on it, so you are, too. A Law360 subscription puts you at the center of fast-moving legal issues, trends and developments so you can act...Read More

Colt Technology faces multi-day outage after WarLock ransomware attack Pierluigi Paganini August 17, 2025 WarLock ransomware hit Colt Telecom, causing outages in hosting, porting, Colt Online, and Voice API since August 12. UK-based Colt Technology Services suffered a cyberattack, reportedly caused by WarLock ransomware, resulting in multi-day outages for hosting, porting, Colt Online, and Voice...Read More

This newsletter is brought to you by Kroll. You can subscribe to an audio version of this newsletter as a podcast by searching for “Risky Business” in your podcatcher or subscribing via this RSS feed. A team of academics has developed a novel attack that can downgrade 5G traffic to weaker states without using a rogue...Read More