As if there weren’t enough privacy concerns in the world, AI ransomware is now reportedly a thing. Cybersecurity firm ESET said that it discovered the first-ever AI-powered ransomware, which it has dubbed PromptLock. “The PromptLock malware uses the gpt-oss:20b model from OpenAI locally via the Ollama API to generate malicious Lua scripts on the fly,...Read More

Data I/O Corporation, a well-known electronics firm that specializes in device programming and security provisioning solutions, revealed a ransomware attack that penetrated its internal IT infrastructure in a major cybersecurity event. The incident, detected on August 16, 2025, prompted an immediate activation of the company’s incident response protocols, highlighting the persistent threat of ransomware in...Read More

Researchers discovered PromptLock, the first known AI-powered ransomware, capable of data theft and encryption. The Slovak software company specialising in cybersecurity has discovered a GenAI-powered ransomware named PromptLock in its latest research report. The researchers describe it as the ‘first known AI-powered ransomware’. Although it has not been observed in an actual attack, it is...Read More

Please ensure Javascript is enabled for purposes of website accessibilityNevada cyberattack confirmed as ransomware, state services disrupted amid investigation Thu, 28 Aug 2025 13:37:14 GMT (1756388234676) Gallery – News3 v1.0.0 (common) 5323f992000be3baf9f8d5f6f8812b76c9f38e39 Fallback Presentation. Using deprecated PresentationRouter. Source link .........................Read More

Please ensure Javascript is enabled for purposes of website accessibilityNevada cyberattack confirmed as ransomware, state services disrupted amid investigation Thu, 28 Aug 2025 12:36:15 GMT (1756384575878) Gallery – News3 v1.0.0 (common) 5323f992000be3baf9f8d5f6f8812b76c9f38e39 Fallback Presentation. Using deprecated PresentationRouter. Source link .........................Read More

The Storm-0501 threat group is refining its tactics, according to Microsoft, shifting away from traditional endpoint-based attacks and toward cloud-based ransomware. By leveraging cloud-native capabilities, analysis from the tech giant shows Storm-0501 exfiltrates large volumes of data, destroys data and backups within the victim environment, and demands ransom — all at speed and without relying...Read More

Microsoft Threat Intelligence has detailed the evolving tactics of the financially motivated threat actor Storm-0501, which has transitioned from traditional on-premises ransomware deployments to sophisticated cloud-based operations. Unlike conventional ransomware that relies on endpoint encryption malware and subsequent decryption key negotiations, Storm-0501 exploits cloud-native capabilities to exfiltrate massive data volumes, obliterate backups, and enforce ransom...Read More

Your browser is not supported | rgj.com rgj.com wants to ensure the best experience for all of our readers, so we built our site to take advantage of the latest technology, making it faster and easier to use. Unfortunately, your browser is not supported. Please download one of these browsers for the best experience on...Read More

Ransomware is no longer a single, disruptive event. It has evolved into a sustained, multi-stage campaign designed to systematically compromise an organisation’s infrastructure and undermine its credibility. The shift we are witnessing is not only tactical, but also strategic. Threat actors have progressed from opportunistic attacks to highly coordinated operations that exploit both technological vulnerabilities...Read More

Microsoft Threat Intelligence has released a detailed report exposing a significant evolution in ransomware attacks, pioneered by the financially motivated threat actor Storm-0501. The group has shifted from traditional on-premises ransomware to a more destructive, cloud-native strategy that involves data exfiltration and destruction, fundamentally changing the nature of ransomware threats for businesses operating in hybrid...Read More