Sophos MDR recently responded to a targeted attack involving a Managed Service Provider (MSP). In this incident, a threat actor gained access to the MSP’s remote monitoring and management (RMM) tool, SimpleHelp, and then used it to deploy DragonForce ransomware across multiple endpoints. The attackers also exfiltrated sensitive data, leveraging a double extortion tactic to...Read More
Australia now requires large companies to inform the government if they have paid off ransomware perps. The requirements, as set out in the Cyber Security Bill 2024, kicked in on Friday, May 30. Any business turning over more than AUS $3 million ($1.92 million) must report ransomware payments within 72 hours to the Australian Signals...Read More
Ransomware isn’t just growing—it’s evolving. And if your defenses still rely on traditional detection and response methods, your organization may already be behind. According to Verizon’s 2025 Data Breach Investigations Report (DBIR), ransomware was involved in 44% of all data breaches—a 37% increase from the previous year. Not only is the volume growing, but the...Read More
Ohio-based Kettering Health announced this past Friday, May 23, that it had stepped up an emergency urgent clinical support line and temporary retail pharmacy contact numbers to ensure care continuity during a system-wide IT outage. The health system also said on social media over the weekend that patients are back in radiation treatment thanks to the...Read More
GREENVILLE, N.C. (WITN) – An Iranian man pleaded guilty today to participating in an international ransomware and extortion scheme that shut down Greenville’s computer system. The U.S. Attorney’s Office says Sina Gholinejad was part of a conspiracy involving the Robbinhood ransomware. Most City Hall computers in Greenville were offline after the April 2019 attack. The...Read More
Cybercriminals are increasingly exploiting the growing popularity of artificial intelligence tools by distributing sophisticated malware disguised as legitimate AI solution installers. This emerging threat landscape has seen malicious actors create convincing replicas of popular AI platforms, using these deceptive packages to deploy devastating ransomware and destructive malware onto unsuspecting victims’ systems. The proliferation of AI...Read More
An Iranian man has pleaded guilty for his role in a ransomware attack that crippled Baltimore’s computer network in 2019, halting critical city services and costing more than $19 million. Sina Gholinejad entered the plea Tuesday, admitting his role in the scheme that took hostage computer networks of several cities, corporations and health care organizations....Read More