Threat actors are changing their tactics toward built-in tooling, as ransomware payment rates continue to decline. The Google Threat Intelligence Group (GTIG) this week published research related to the ransomware ecosystem across 2025, as well as the most common tactics, techniques, and procedures (TTPs) seen in incidents Google Cloud’s Mandiant group responded to. Some of...Read More
By Matt Kahle, CEO, Real IT Solutions West Michigan’s manufacturing sector has long been a driver of regional innovation and economic growth. From automotive suppliers and office furniture makers to medical device manufacturers and precision engineering firms, the region’s industrial base has helped shape one of the most resilient economies in the Midwest. But as...Read More
They call it “stopping the bleeding”: the vital window to prevent an entire database from being ransacked by criminals or a production line grinding to a halt. When a call comes into the cybersecurity firm S-RM, headquartered on Whitechapel High Street in east London, a hacked business or institution may have just minutes to protect...Read More
The Federal Communications Commission’s (FCC) Public Safety and Homeland Security Bureau (Bureau) recently released a public notice (Notice) emphasizing the threat of ransomware to communications networks and urging providers to adopt various cybersecurity best practices. The Notice, dated January 29, 2026, is geared toward small-to-medium sized providers, but its recommendations are relevant to larger providers as...Read More
The Washington Hotel brand in Japan has announced that that its servers were compromised in a ransomware attack, exposing various business data. The hospitality group has established an internal task force and engaged external cybersecurity experts to assess the impact of the intrusion, determine whether customer data was compromised, and coordinate recovery efforts. Washington Hotel,...Read More
CISA Warns Cisco Secure Firewall Management Center 0-Day Exploit An urgent warning highlights a critical zero-day in Cisco products, now added to the CISA Known Exploited Vulnerabilities Catalog after active exploitation in ransomware campaigns. Network defenders and security administrators are urged to take immediate action. The rapid exploitation of this vulnerability by financially motivated threat...Read More
Qilin, the ransomware gang behind a crippling 2024 cyber attack on a major NHS supplier partner, maintained its status as “top dog” in the ransomware ecosystem during January 2026, accounting for nearly a fifth of all observed attacks, according to data gathered by NCC Group for its regular monthly cyber barometer. In its latest...Read More
A critical vulnerability (CVE-2026-20131) in Cisco Secure Firewall Management Center (FMC) that Cisco disclosed and patched in early March 2026 has been exploited as a zero-day by the Interlock ransomware gang, Amazon CISO and VP of Security Engineering CJ Moses revealed. “Our research [using Amazon’s MadPot system of honeypots] found that Interlock was exploiting this...Read More
Foster City, California said it was forced to pause all public services outside of emergency responses in light of a ransomware attack discovered on Thursday morning. The Bay Area city, home to about 34,000 people, forced the city manager to declare a state of emergency — which will unlock supplementary financial support from outside agencies....Read More
