The cybercriminal group UNC3944, which overlaps with public reporting on Scattered Spider, has demonstrated a significant evolution in tactics over the past two years. Initially focusing on telecommunications-related organizations to facilitate SIM swap operations, the group has transformed into a more sophisticated threat actor deploying ransomware and engaging in data theft extortion. This financially-motivated threat...Read More

Qilin became the top ransomware group in April amid uncertainty over the status of RansomHub, according to a Cyble blog post published today. RansomHub’s data leak site (DLS) went offline on April 1, and DragonForce claimed it had taken over RansomHub’s infrastructure and appealed to RansomHub affiliates to join it. Instead, it appears that Qilin...Read More

Between April 2024 and April 2025, Flashpoint analysts observed the financial sector as a top target of threat actors, with 406 publicly disclosed victims falling prey to ransomware attacks alone—representing seven percent of all ransomware victim listings during that period. However, ransomware is just one piece of the complex threat actor puzzle. The financial sector is...Read More

Schools in West Lothian have been the victim of a suspected criminal ransomware cyberattack. A council spokesperson said the attack had affected its education network and contingency plans to keep schools open was under way. Ransomware is a type of malware which prevents someone from accessing a device and the data stored on it, usually...Read More

In a reminder to button up your station’s cyber security, WDEF in Chattanooga, Tennessee was hit by ransomware called Lynx, according to Cybernews. We asked WDEF about it, but haven’t heard back. On May 1, Lynx posted data samples on the dark web that looked like confidential agreements with the CBS affiliate’s employees. Ransomware gangs...Read More

The Wiretap: A ‘Ransomware Cartel’ Causes Chaos  Forbes Source link .........................Read More

Ed. note: This is the latest in the article series, Cybersecurity: Tips From the Trenches, by our friends at Sensei Enterprises, a boutique provider of IT, cybersecurity, and digital forensics services. Like most professional service firms, law firms continue to experience increased cybersecurity attacks, mostly phishing and Business Email Compromise (BEC) attacks, aimed at compromising and stealing payment...Read More

HOBOKEN, N.J., May 6, 2025 /PRNewswire/ — Semperis, a leader in AI-powered identity security and cyber resilience, today announced that it has been named the Ransomware Protection Business of the Year by the Australian Cyber Awards 2025. The award underscores the measurable impact of Semperis’ identity-first approach, helping global enterprises reduce ransomware risk, accelerate recovery, and...Read More

Copyright © 2025 CyberRisk Alliance, LLC All Rights Reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorization. Your use of this website constitutes acceptance of CyberRisk Alliance Privacy Policy and Terms of Use. Source link .........................Read More

Operators of the Rhysida ransomware add Peruvian government to their data leak site Hackers claim to have stolen sensitive files and are demanding five bitcoin The government says it hasn’t been targeted and that it operates normally Infamous hacking group Rhysida has claimed it breached the digital platform of the Peruvian government, but the South...Read More