What organizations need to know about DragonForce (Water Tambanakua) DragonForce (tracked by Trend Micro as Water Tambanakua) has shown consistent activity and a clear drive to expand its influence among affiliates. Its tactics also point toward an aggressive and highly opportunistic approach. One example of this is its use of multivariant payloads, in which it...Read More
Comparitech reported that in 2025, there were 7,419 ransomware attacks worldwide, representing a 32% increase over the 5,631 attacks recorded in 2024. Of the 7,419 attacks noted in 2025, 1,173 were confirmed by the targeted organizations. Ransomware groups claimed the remaining incidents on their data leak sites, but have not been publicly acknowledged by the...Read More
Federal cyber authorities shared new details Thursday about the Akira ransomware group’s techniques, the tools it uses and vulnerabilities it exploits for initial access alongside the release of a joint cybersecurity advisory. Members of the financially motivated group, which initially appeared in March 2023, are associated with other threat groups, including Storm-1567, Howling Scorpius, Punk...Read More
Potential cloud ransomware targets Ransomware actors increasingly focus on cloud-native assets that hold or enable quick recovery of critical business data and infrastructure. The following Amazon Web Services (AWS) resources are prime targets due to their high value and potential to disrupt operations: Compute snapshots Compute snapshots – point-in-time copies of virtual machine disks or...Read More
592 IT/cybersecurity leaders share their ransomware experiences from the last year, revealing fresh new insights into the realities facing them today. The latest annual Sophos study of the real-world ransomware experiences of financial services organizations explores the full victim journey, from attack rate and root cause to operational impact and business outcomes. This year’s report...Read More
WRAL Investigates reported Monday that the number of ransomware attacks in NC is increasing significantly, up almost fifty percent year over year, according to a state report. We spoke with Deiker Lozano, the Senior Cybersecurity Engineer at Capitol Broadcasting Company, WRAL’s parent company, to ask about red flags and proactive steps to stay safe. He...Read More
Executive Summary In June 2025, we observed a new ransomware family named 01flip targeting a limited set of victims in the Asia-Pacific region. 01flip ransomware is fully written in the Rust programming language and supports multi-platform architectures by leveraging the cross-compilation feature of Rust. These financially motivated attackers likely carried this out through manual means....Read More
How to Prepare and Respond to Ransomware Attacks 1.16.2026 By Jennifer Andrus Ransomware attacks have evolved into a billion-dollar threat and businesses of all sizes are at risk. Preparing a business for the threat and planning a response was the topic of a panel discussion sponsored by the Local and State Government Law Section at...Read More
