On December 18, 2023, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) released a joint Cybersecurity Advisory (CSA) to disseminate Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) associated with the Play Ransomware group, identified through FBI investigations...Read More
The US Cybersecurity and Infrastructure Security Agency has released an advisory warning of ransomware actors exploiting a known vulnerability in SimpleHelp Remote Monitoring and Management. In one instance, a ransomware group was able to use the vulnerability to compromise the customers of a utility billing software provider using an unpatched version of the software.
...Read More
Published On : 2025-06-12 Ransomware of the week CYFIRMA Research and Advisory Team would like to highlight ransomware trends and insights gathered while monitoring various forums. This includes multiple – industries, geography, and technology – that could be relevant to your organization. Type: RansomwareTarget Technologies: Windows IntroductionThe CYFIRMA Research and Advisory Team has found SafeLocker...Read More
Exclusive: Ransomware gang Scattered Spider likely to have caused PHLY disruption, cyber sources say TradingView Source link .........................Read More
Exclusive: Ransomware gang Scattered Spider likely to have caused PHLY disruption, cyber sources say The Insurer Source link .........................Read More
As of 29 May 2025, the requirement on businesses to report ransomware payments they make has come into effect. What is the Requirement? If a reporting business entity becomes impacted by a cyber security incident and ends up making a ransomware payment in response to the incident, the business must report the ransomware payment to the designated...Read More
Businesses were advised June 12 that a May 2025 attack on a financial institution by the Fog ransomware was an unusual combination of tools: A mix of the legitimate employee monitoring software Syteca with the open-source pentesting tools GC2, Adaptix, and Stowaway.What’s different here, said researchers in a blog June 12 by Symantec and Carbon...Read More
Manufacturing’s rapid digital transformation has merged legacy industrial control systems (ICS) and operational technology (OT) networks with corporate IT and IoT infrastructures, drastically expanding the industry’s cyberattack surface. In this interconnected environment, pretty much every piece of equipment is now reachable via enterprise networks or the Internet. This convergence of IT, IoT, and OT has...Read More
A cyberattack on a financial institution in Asia last month featuring the Fog ransomware has made a splash among researchers and incident responders due to the unusual tools and tactics involved. Researchers at Symantec said the hackers used a legitimate employee monitoring software called Syteca — something they have never seen in a ransomware attack...Read More
