Masimo Corporation files new report with the SEC confirming attack It says it suffered a cyberattack that crippled operations No threat actors claimed responsibility yet Masimo Corporation has confirmed suffering a cyberattack which crippled its operation and forced it to shut down parts of its infrastructure to address the problem. In a new 8-K form...Read More

School staff and pupils have been thanked for their patience, as an investigation into a suspected ransomware attack earlier this week continues West Lothian’s education executive councillor also paid tribute to council IT staff for their prompt response to the incident. A criminal investigation into a suspected ransomware attack on West Lothian schools is ongoing....Read More

New DOGE Big Balls ransomware attacks spotted. NurPhoto via Getty Images Update, May 10, 2025: This story, originally published May 9, has been updated with further information regarding the newly confirmed DOGE Big Balls ransomware threat payloads as well as correcting a malformed link to the original threat research report. Just as you were hoping...Read More

Peru’s government is denying claims that its federal digital platform was taken over by a ransomware gang that has previously attacked governments around the world.  The Ministry of Government and Digital Transformation published a statement on Thursday addressing a posting on the Rhysida ransomware gang’s leak site about a takeover of the government’s domain.  The...Read More

A sophisticated new attack method that disables endpoint security protection has been identified by security researchers, enabling threat actors to deploy ransomware undetected.  The technique, dubbed “Bring Your Own Installer,” was recently discovered by Aon’s Stroz Friedberg Incident Response team during an investigation of a Babuk ransomware attack. The method exploits a vulnerability in SentinelOne’s...Read More

In April 2025, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced a HIPAA enforcement settlement with Comprehensive Neurology, PC, a New York-based neurology practice, in connection with a ransomware incident that compromised the electronic protected health information (“ePHI”) of approximately 6,800 individuals. This case marks OCR’s 12th ransomware-related enforcement...Read More

Anti-Ransomware Day was established on May 12 in 2020 by INTERPOL in collaboration with Kaspersky to commemorate the anniversary of the infamous WannaCry ransomware attack that occurred on May 12, 2017. The purpose of Anti-Ransomware Day is to raise global awareness about the threats posed by ransomware and to promote best practices for prevention and...Read More

Published On : 2025-05-08 Ransomware of the week CYFIRMA Research and Advisory Team would like to highlight ransomware trends and insights gathered while monitoring various forums. This includes multiple – industries, geography, and technology – that could be relevant to your organization. Type: RansomwareTarget Technologies: MS Windows IntroductionCYFIRMA Research and Advisory Team has found LockZ...Read More

LockBit, one of the most notorious and prolific cybercrime groups, has been compromised, handing law enforcement and threat intelligence experts a trove of critical insider information. On May 7, a cyber threat actor known as “Rey” on X discovered that LockBit’s dark web affiliate panels had been defaced and replaced with a message and a...Read More

Malicious payloads NETXLOADER and SmokeLoader have been leveraged by the Qilin ransomware gang, also known as Agenda, to escalate attacks against telecommunications, healthcare, financial services, and technology organizations in the U.S., Brazil, the Netherlands, India, and the Philippines during the first three months of 2025, reports GBHackers News. Advanced obfuscation methods, including JIT hooking and...Read More