The bank holiday weekend saw continuing disruption from a series of cyber attacks on the UK retail sector that have unfolded over the past fortnight, with gaps appearing on shelves at Marks and Spencer (M&S) and Co-op. The attacks, which began over the Easter weekend, have been claimed by representatives of the DragonForce ransomware-as-a-service...Read More
The Play ransomware gang has exploited a high-severity Windows Common Log File System flaw in zero-day attacks to gain SYSTEM privileges and deploy malware on compromised systems. The vulnerability, tracked as CVE-2025-29824, was tagged by Microsoft as exploited in a limited number of attacks and patched during last month’s Patch Tuesday. “The targets include organizations in...Read More
The wave of cyberattacks targeting British retailers is likely to continue, spelling more disrupted shopping for UK consumers, experts have warned. Harrods was the third major retailer to be targeted following ransomware attacks on Marks & Spencer and the Co-Op, for which a hacking gang has claimed responsibility. It is believed that hackers impersonated employees...Read More
Federal prosecutors have indicted a man living in Yemen who they believe to be the mastermind behind the Black Kingdom ransomware. The individual, Rami Khaled Ahmed, is accused of developing the ransomware, and then infecting around 1,500 computer systems with it. The infested systems were in the U.S. as well as other countries. Ahmed has...Read More
Threat actors linked to the Play ransomware operation exploited a zero-day vulnerability in Microsoft Windows prior to its patching on April 8, 2025. The vulnerability, tracked as CVE-2025-29824, affects the Windows Common Log File System (CLFS) driver and allows attackers to elevate their privileges from standard user to full system access. The Symantec Threat Hunter...Read More
Threat actors with links to the Play ransomware family exploited a recently patched security flaw in Microsoft Windows as a zero-day as part of an attack targeting an unnamed organization in the United States. The attack, per the Symantec Threat Hunter Team, part of Broadcom, leveraged CVE-2025-29824, a privilege escalation flaw in the Common Log...Read More
Rubrik Zero Labs Survey says 90% of Global IT and Security Executives Report Cyberattacks in the Past Year Data sprawl drives spike in cyber incidents across AI, cloud, SaaS, and on-premise environments, according to Rubrik Zero Labs Report New Delhi – New research from Rubrik Zero Labs finds that Indian organizations are facing a wave of...Read More
So Where Are the Hacks? Both reports make clear the continuing popularity of manufacturing as a primary target for threat actors. So why did we hear nothing about major attacks last year? “While 2024 also brought several high-profile breaches in the manufacturing sector – such as the ransomware attack at CDK global – these events...Read More
