Federal authorities have revealed that the notorious Play ransomware group has successfully breached approximately 900 organizations worldwide as of May 2025, marking a dramatic escalation in cybercriminal activity that has prompted an urgent security advisory from multiple government agencies. The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Signals Directorate’s...Read More
The Cybersecurity and Infrastructure Security Agency (CISA), alongside the Federal Bureau of Investigation (FBI) and the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), has released detailed Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IoCs) for the notorious Play ransomware group. As of May 2025, the FBI has identified approximately 900 entities...Read More
The Interlock ransomware gang has claimed a recent cyberattack on the Kettering Health healthcare network and leaked data allegedly stolen from breached systems. Kettering Health employs over 15,000 people, including more than 1,800 physicians, and it manages 14 medical centers and over 120 outpatient facilities in western Ohio. The nonprofit organization disclosed a cyberattack on...Read More
By Martin Croucher ( June 5, 2025, 8:33 AM BST) — The cost of buying cyber-insurance for the public sector and critical infrastructure could rise significantly because of a proposed ban on paying ransomware demands, experts warn, as the U.K. government looks at ways to disrupt the income of online criminals…. Law360 is on it,...Read More
Experts warn that ransomware attacks pose a “very serious” risk to the country’s pension systems, with occurrences increasing in recent years. The stark warning comes as the global economy continues to see a rise in a variety of cyberthreats targeting virtually all industries and major infrastructure. According to Robert Hopps, CISO and CIO of Vitech,...Read More
TL;DR: Canberra authorities are embracing a tough approach to ransomware threats. A new law will require certain organizations to disclose when and how much they have paid to cybercriminals following a data breach. However, experts remain unconvinced that this is the most effective way to tackle the problem. Companies operating in Australia must now report...Read More
Rapid7’s Q1 2025 incident response data highlights several key initial access vector (IAV) trends, shares salient examples of incidents investigated by the Rapid7 Incident Response (IR) team, and digs into threat data by industry as well as some of the more commonly seen pieces of malware appearing in incident logs. Is having no MFA solution...Read More
RISE Racing confirms Sarcoma ransomware attack An Australian harness racing digital provider has fallen victim to hackers as bank account details were published to the darknet. The Sarcoma ransomware gang has listed RISE Racing as a victim on its darknet leak site, an attack that the Australian harness racing services provider has confirmed. The leak...Read More