A groundbreaking report titled “The State of Ransomware 2025” by Sophos, released in June 2025, has shed light on the persistent and evolving threat of ransomware attacks targeting organizations worldwide. The study, based on responses from 3,400 victims, identifies exploited vulnerabilities as the predominant technical root cause of these attacks for the third consecutive year,...Read More

A comprehensive analysis of the global ransomware landscape has revealed that exploited vulnerabilities remain the dominant attack vector, accounting for 32% of all successful ransomware incidents targeting organizations worldwide. This marks the third consecutive year that vulnerability exploitation has topped the list of technical root causes, according to findings from the latest State of Ransomware...Read More

A data breach at Ahold Delhaize USA Services, LLC, a company providing support to the major East Coast grocery retailer Ahold Delhaize USA, has affected more than 2.2 million (2,242,521) individuals (including over 95,000 Mainers). The incident, which involved unauthorized access to internal US business systems, occurred between November 5th and 6th, 2024, leading to...Read More

Infosec in Brief Despite warnings not to pay ransomware operators, almost half of those infected by the malware send cash to the crooks who planted it, according to infosec software slinger Sophos. The vendor surveyed 3,400 IT pros in early 2025 about their experiences over the last year and found 49 percent paid ransoms on...Read More

What is Ransomware-as-a-Service? Ransomware-as-a-service is a business model where ransomware operators and third parties, called “affiliates,” work together to launch ransomware attacks. RaaS was first identified in 2012 with the Reveton ransomware strain, and in the subsequent decade it has exploded into a sophisticated and ever-evolving cybercrime tactic. In the ransomware-as-service-model, ransomware developers (both individuals...Read More

Lucknow: A Lucknow-based advertising company became the target of a ransomware attack, disrupting its operations and compromising critical data. Cybercriminals allegedly infiltrated the company’s server and deployed a virus that encrypted all files and system data. They later demanded a ransom in exchange for decrypting the files.The company’s IT head, Vivek Jain, filed a complaint...Read More

A patient’s death has been officially connected to a cyber attack carried out by the Qilin ransomware group that crippled pathology services at several major NHS hospitals in London last year. The cyber attack on Synnovis, a key pathology provider, caused widespread disruption to vital diagnostic services, delaying critical blood test results and impacting patient...Read More

The U.S. Federal Bureau of Investigation (FBI) has revealed that it has observed the notorious cybercrime group Scattered Spider broadening its targeting footprint to strike the airline sector. To that end, the agency said it’s actively working with aviation and industry partners to combat the activity and help victims. “These actors rely on social engineering...Read More

Cybercrime , Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime Also, O Canada, Oh Brother and More Probable Chinese Hacking Anviksha More (AnvikshaMore) • June 26, 2025     Image: Shutterstock/ISMG Every week, Information Security Media Group rounds up cybersecurity incidents and breaches around the world. This week: The UK NHS linked a patient...Read More

Belgian-Dutch supermarket operator Ahold Delhaize has revealed that the personal data of over two million individuals was compromised in a November 2024 ransomware attack on the systems of its US operations. In a filing made this week at the office of the attorney general for the US state of Maine, the organisation said that...Read More