[ad_1] Coveware by Veeam has published its Q2 2025 ransomware report, detailing a sharp rise in targeted social engineering attacks and a significant increase in ransom payments, with data exfiltration-led extortion playing a central role. Data exfiltration drives ransom surge The report reveals that both average and median ransom payments have risen markedly over the...Read More

[ad_1] In a display of bureaucratic bravado, US law enforcement agencies say they’ve “disrupted” the BlackSuit ransomware gang (also known as Royal), freeing millions of dollars in virtual currency from its clutches. On July 24, the US Department of Homeland Security Investigations (HSI) – with help from the FBI, Secret Service, and the IRS —...Read More

[ad_1] TRM analysts have determined that Embargo is likely a successor, or a rebranded version, of the BlackCat ransomware group. A ransomware group going by the name Embargo has extorted roughly $34 million from companies in the United States, with hospitals and healthcare facilities among the top targets, according to research from blockchain intelligence company TRM...Read More

[ad_1] The city of St. Paul, Minn., has refused to pay a ransomware demand from the cyber criminal group Interlock, even after the attackers claimed to have stolen city data. In retaliation, the group, known for large-scale attacks on governments and critical infrastructure, published 43 gigabytes of material online for free. The leaked files, taken...Read More

[ad_1] Tuesday on FOX 9’s All Day streaming show, Eric Brown with IT Audit Labs joined Amy Hockert to weigh in on the recent ransomware attack happening to the City of St. Paul. How expansive is it? How long will it take to fix? How can it be prevented? Posted August 12, 2025 1:29pm CDT [ad_2]...Read More

[ad_1] Global staffing firm Manpower confirmed ransomware criminals broke into its Lansing, Michigan franchise’s network and stole personal information belonging to 144,189 people, months after the extortionists claimed that they pilfered “all of [the company’s] confidential data.”  “Earlier this year we were made aware that an independently owned and operated Manpower franchise in Lansing was...Read More

[ad_1] In a coordinated international operation, law enforcement agencies successfully dismantled critical infrastructure belonging to the BlackSuit ransomware group, also known as Royal, marking a significant victory in the ongoing battle against cybercriminal enterprises. The July 24, 2025 takedown operation resulted in the seizure of four servers, nine domains, and approximately $1.09 million in laundered...Read More

[ad_1] The U.S. Department of Justice, in collaboration with multiple domestic and international law enforcement agencies, announced the seizure of critical infrastructure associated with the BlackSuit ransomware group, formerly known as Royal. Authorities dismantled four command-and-control (C2) servers and nine domains utilized by the threat actors for deploying ransomware payloads, extorting victims through double-extortion tactics,...Read More

[ad_1] Researchers say a newly-identified ransomware strain dubbed Charon has been deployed in cyberattacks targeting the public sector and aviation organizations in the Middle East, sharing some similarities with attacks from a China-linked cyber-espionage group. A report published Tuesday by cybersecurity firm Trend Micro described Charon as having APT-style capabilities. Before encrypting files, the ransomware...Read More

[ad_1] The U.S. Department of Justice announced it had dismantled key infrastructure linked to a notorious Russian ransomware group, taking control of its servers and recovering about $1 million worth of bitcoin. The gang, known for deploying BlackSuit and Royal malware in cyberattacks, has been tied to a string of high-profile extortion cases worldwide. The...Read More