A new financially motivated threat, Nitrogen Ransomware, has rapidly emerged targeting the financial sector and beyond. While traces of this financially motivated ransomware date back to July 2023, security experts primarily track its organized campaigns from September 2024. Nitrogen primarily targets organizations in construction, financial services, manufacturing, and technology sectors across the United States, Canada,...Read More
Symantec recently reported that a China-based threat actor who has been involved in installing backdoors in the systems of target government institutions (i.e., cyber espionage) has turned toward spreading RA World ransomware (i.e., a cybercriminal act) this time. Going from one act to the other is not usual for attackers. Why did the researchers think...Read More
Your CPU’s Microcode May Be The Next Target The discovery of UEFI ransomware in the ecosystem ruined a lot of people’s happiness. The ability to infect your motherboard’s UEFI is an utter nightmare as the malware not only loads every time your system boots up, it exists in a place no traditional antivirus software can...Read More
Bottom line: Chipmakers typically use microcode updates to fix bugs and improve CPU reliability. However, this low-level layer between hardware and machine code can also serve as a stealthy attack vector – capable of hiding malicious payloads from all software-based defenses. As threats evolve, even the deepest layers of a system can no longer be...Read More
May 12 is recognised globally as Anti-Ransomware Day, an initiative created to raise awareness about the threat of ransomware and to promote better practices for prevention, response, and recovery. The date was chosen to mark the anniversary of the WannaCry outbreak in 2017, one of the most disruptive ransomware incidents in history, affecting systems in...Read More
As artificial-intelligence services become more commonplace, their impact on the payments industry, both good and bad, is becoming clear. As a tool to help merchants, AI services can help with a variety of tasks, something restaurant point-of-sale specialist SpotOn Transact LLC will be counting on as it launches its AI-powered service later this week at...Read More
A sophisticated attack campaign using steganographic techniques to hide malicious code within ordinary JPEG image files, delivering a fully undetectable (FUD) ransomware payload that bypasses traditional security solutions. The attack exploits the metadata structure of JPEG files to conceal PowerShell code that, when triggered, downloads and executes ransomware without raising security alerts. This technique, known...Read More
In early 2025, one of the most horrifying ransomware attacks struck a major healthcare conglomerate in South Asia, paralyzing over 200 hospitals and diagnostic centers across India, Sri Lanka, and Bangladesh. The attack, attributed to the emerging RansomHub group, bypassed traditional defenses by exploiting stolen credentials and a zero-day vulnerability in a widely used hospital...Read More
Opinion It’s been a devastating few weeks for UK retail giants. Marks and Spencer, the Co-Op, and now uber-posh Harrods have had massive disruptions due to ransomware attacks taking systems down for prolonged periods. Imagine an inverse Black Hat conference, an Alcoholics Anonymous for CISOs, where everyone commits to frank disclosure and debate on the...Read More
