This year is shaping up to be a turning point in defense tactics. We’ve already seen major disruptions across the ransomware ecosystem. Groups like LockBit and RansomHub have gone dark or been disrupted, prompting a flurry of speculation. But if defenders are hoping this signals a downturn in attacks, they’ll be disappointed. Newly emergent groups...Read More
The FBI, Cybersecurity and Infrastructure Security Agency and Australian Cyber Security Centre June 4 released an advisory on updated actions and tactics used by the Play ransomware group. The group, active since 2022, has impacted a wide range of businesses and critical infrastructure in North America, South America and Europe. As of May, the FBI...Read More
In a growing wave of sophisticated cyber threats against the industrial sector, ransomware attacks jumped by 46 percent from Q4 2024 to Q1 2025, according to Honeywell’s new 2025 Cybersecurity Threat Report. The research also found that both malware and ransomware increased significantly in this period and included a 3,000 percent spike in the use of one trojan...Read More
Kettering Health shared an update on its cybersecurity incident, sharing they identified what they believe is the reason behind the incident.The health network said they believe the cybersecurity incident was launched by the ransomware group Interlock. It resulted in a systemwide technology outage, limiting the network’s ability to access certain patient care systems across the...Read More
The ransomware group Interlock claimed it has 732,490 files across 20,418 folders stolen from Kettering Health, posting about it on its data leak site on the dark web, according to an image posted by the cybersecurity firm Comparitech and other tech news sites. Kettering Health said it believes Interlock to be the group behind the...Read More
The Cybersecurity & Infrastructure Security Agency, along with the Federal Bureau of Investigation (FBI), and the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) have issued an updated advisory on Play ransomware, also known as Playcrypt. This advisory highlights new tactics, techniques, and procedures used by the Play ransomware group and provides updated indicators of compromise...Read More
The FBI and the Cybersecurity and Infrastructure Security Agency on Wednesday warned that the Play ransomware gang has been targeting U.S. critical infrastructure and other organizations using evolving techniques. The ransomware group was among the most active in 2024 and has targeted a wide range of businesses and infrastructure providers in North America, South America...Read More
Play Ransomware has hit 900 companies so far, new FBI advisory claims The group is calling victims on the phone to try and force them to pay the ransom demand It also added new vulnerabilities to its arsenal Play Ransomware’s “body count” is almost hitting four digits, a new warning from top legal enforcement has...Read More
Payne County Sheriff’s Office targeted by ransomware attack. FBI announces investigation into incident. Thursday, June 5th 2025, 7:12 am By: Madelyn Fisher The Federal Bureau of Investigation is conducting a criminal investigation after the Payne County Sheriff’s Office says it experienced a ransomware attack. The sheriff’s office says it recommends that anyone who filed a...Read More