DENVER–(BUSINESS WIRE)–Object First, the ransomware-proof on-premises backup storage company, today announced its participation at RSAC Conference 2026, taking place March 23-26 at the Moscone Center in San Francisco. AI-powered ransomware attacks are increasingly frequent and sophisticated. When – not if – an attack occurs, an organization’s ability to recover its data quickly, safely, and effectively...Read More

T1189 – Drive-by CompromiseThe Agenda ransomware has been observed being delivered using various methods such as drive-by downloads, cloned sites, hosted files, and scripted web delivery or via compromised systems. T1091 – Replication Through Removable MediaIt has the capability to generate payloads that autoplay via removable media such as USB drives and CDs. T1078 –...Read More

Google Threat Intelligence has released its 2025 ransomware landscape report, revealing a significant shift in how cybercriminals operate. According to the latest findings, ransomware groups are increasingly pivoting toward data theft and extortion as their traditional encryption-based business models become less profitable. This change highlights the ongoing evolution of the ransomware-as-a-service ecosystem amid a more...Read More

As many students across parts of the world return to class, ransomware remains a pressing threat to the education sector. Sophos’ latest annual study, based on the real-world experiences of 441 institutions hit by ransomware in the past year, reveals how lower education (students up to age 18) and higher education providers (over 18) are...Read More

Ransomware has evolved into one of the most disruptive cyber threats globally, affecting sectors ranging from healthcare and finance to transportation and government systems. With cybercriminals leveraging automation, encryption, and evolving attack models, artificial intelligence (AI) is emerging as a key tool in detecting, preventing, and mitigating ransomware, though significant technical and institutional challenges...Read More

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor. Researchers at cyber-deception threat intelligence firm MalBeacon observed the hackers’ actions in an emulated organization environment over a period of 12 days. Velvet Tempest, also tracked as DEV-0504, is a...Read More

People lined up to check-in at Japan Airlines counters in the departures hall of Tokyoʼs Haneda Airport on December 26, 2024. Japan Airlines reported a cyberattack the same day that caused delays to domestic and international flights, but   later said it had identified and resolved the issue. (c) AFP=JIJI    “We believed we had taken...Read More

For over a decade, ransomware has remained one of the more pernicious cybersecurity problems that CISOs and their security teams face. Over the years, these cyber threats have damaged organizations’ infrastructure and networks, led to personal data leaks and allowed cybercriminals to pocket millions in ransom from victims. Ransomware attacks have also forced CISOs and...Read More

The Rhysida ransomware gang claimed responsibility for a late-August data breach at the Maryland Transit Administration. Exposed data includes names, surnames, dates of birth, driver’s licenses, SSNs, passports, and confidential information. The group is said to have demanded a ransom of 30 bitcoin, around US$3.4 million at the time of writing, to be paid within...Read More

Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief: The volume of ransomware attacks on telecommunications companies around the world increased fourfold from 2022 to 2025, according to a report that the threat intelligence firm Cyble published this week. Cyble also identified 444 incidents...Read More