Attacks exploiting the maximum severity insecure deserialization zero-day vulnerability in Cisco Secure Firewall Management Center software, tracked as CVE-2026-20131, have been launched by the Interlock ransomware gang since Jan. 26, or over a month before the flaw’s public disclosure, The Hacker News reports.Interlock weaponized CVE-2026-20131 by delivering crafted HTTP requests that ran arbitrary Java code...Read More
Summary Microsoft Defender disrupted a human operated ransomware incident targeting a large educational institution with more than a couple of thousand devices. The attacker attempted to weaponize Group Policy Objects (GPOs) to tamper with security controls and distribute ransomware via scheduled tasks. Defender’s predictive shielding detected the attack before ransomware was deployed and proactively hardened against...Read More
Trio-Tech International, a California-based semiconductor services firm, disclosed that its Singapore subsidiary was struck by a ransomware attack that encrypted files across its network and ultimately led to stolen data being published online. The company filed the disclosure with the SEC after initially concluding the breach wasn’t material. That assessment changed once the threat actors...Read More
In early 2026, Nike disclosed a ransomware incident. Attackers encrypted some systems. Nike restored from backups. Operations continued with minimal disruption. Sounds like a contained incident, right? Here’s what Nike didn’t emphasize in their public statements: Before encrypting anything, the attackers exfiltrated approximately 1.4 terabytes of intellectual property: Unreleased shoe designs and prototypes Manufacturing processes...Read More
As much as 4.3% of the total malware detections in India in 2025-26 were from Karnataka. | Photo Credit: Getty Images/iStockphoto Nearly 9% of the total ransomware cases in India in 2025–26 were from Karnataka, according to the Centre of Excellence for Cybersecurity – Karnataka (CySecK) annual compendium report released on Monday. The report also...Read More
Mandiant’s M-Trends 2026 report, released today at the RSA Conference, shows that attackers are moving faster, operating more collaboratively, and increasingly focusing on the systems organizations rely on to recover from breaches. The report, based on more than 500,000 hours of incident response engagements in 2025, finds that attackers are compressing key phases of the...Read More
Alternatives to paying ransom If you choose not to pay, or if paying simply is not an option, there are still ways to recover. Preparation and layered defense make all the difference. Offline or segmented backups are the best starting point. When your backups are separated from your main network or stored offline, you can...Read More
A new Sophos report reveals how the ransomware threat landscape for manufacturing and production organizations has evolved over the past year. It explores previously overlooked factors, such as operational vulnerabilities that left these organizations exposed to attacks, as well as the human toll on IT and cybersecurity teams. The report, based on the firsthand experiences...Read More
Trio-Tech International, a California-based semiconductor services firm, disclosed that its Singapore subsidiary was struck by a ransomware attack that encrypted files across its network and ultimately led to stolen data being published online. The company filed the disclosure with the SEC after initially concluding the breach wasn’t material. That assessment changed once the threat actors...Read More
Cyberattacks against the insurance industry The insurance industry has seen a series of cyberattacks this year, highlighting the broader risk environment. In June, Aflac, one of the largest insurance companies in the United States, reported a breach in which hackers potentially accessed Social Security numbers, insurance claims, and health information. Source link .........................Read More
