[ad_1] Aug 02, 2025Ravie LakshmananVulnerability / Zero Day SonicWall SSL VPN devices have become the target of Akira ransomware attacks as part of a newfound surge in activity observed in late July 2025. “In the intrusions reviewed, multiple pre-ransomware intrusions were observed within a short period of time, each involving VPN access through SonicWall SSL...Read More
[ad_1] A new ransomware threat has emerged as one of the most aggressive cybercriminal operations of 2025, with SafePay ransomware claiming responsibility for over 265 successful attacks spanning multiple continents. The group, which first appeared in September 2024 with limited activity targeting just over 20 victims, has dramatically escalated its operations since early 2025, establishing...Read More
[ad_1] In late July 2025, Arctic Wolf observed an increase in ransomware activity targeting SonicWall firewall devices for initial access. In the intrusions reviewed, multiple pre-ransomware intrusions were observed within a short period of time, each involving VPN access through SonicWall SSL VPNs. While credential access through brute force, dictionary attacks, and credential stuffing have...Read More
[ad_1] Conclusion and security recommendations The newly discovered Gunra ransomware Linux variant significantly broadens the ransomware group’s range for attacks, signifying its clear intent to adapt and expand beyond its original scope. This shift into the Linux environment is among the latest of this trend in the ransomware landscape: going cross-platform to widen and expand...Read More
[ad_1] Results from the Semperis 2025 Global Ransomware Risk Report indicate that Singapore faces the highest global risk of regulatory extortion from cybercriminals. The report, based on a survey of nearly 1,500 organisations worldwide, highlights the prevalence and characteristics of recent ransomware attacks across various sectors and regions. According to the study, 61% of organisations...Read More
[ad_1] Disappearance of significant RaaS groups Several prominent RaaS groups, including RansomHub, Babuk-Bjorka, FunkSec, BianLIan, 8Base, Cactus, Hunters International, and Lockbit, stopped publishing new victims. Though the reasons for their disappearances vary, the net effect is a fragmented ransomware ecosystem no longer dominated by one or two major players. Decline in publicly posted victims Q2...Read More
[ad_1] Ransomware remains one of the most persistent threats facing enterprises and public sector organizations. The latest research from ThreatLabz confirms that attacks are not only increasing in volume, but also shifting toward more targeted, data-driven extortion tactics. The newly released Zscaler ThreatLabz 2025 Ransomware Report examines year-over-year spikes in ransomware activity blocked by the...Read More
[ad_1] New data from Zscaler shows that manufacturing, technology, and healthcare remain the most frequently targeted sectors, representing high-stakes environments that are ripe for extortion and leverage, where disruption can yield maximum leverage for attackers. Meanwhile, ransomware attacks on the oil and gas industry surged 935.3% year-over-year, likely fueled by a growing reliance on automation...Read More
[ad_1] Cybersecurity Ventures projects ransomware costs could top $265 billion a year by 2031, while total cybercrime damages may hit $10.5 trillion globally this year. Artificial intelligence (AI) has become one of the most potent force multipliers the criminal underground has ever seen. Generative models that write immaculate prose, mimic voices, and chain exploits together have lowered the cost of...Read More
[ad_1] A recent wave of ransomware attacks targeting SonicWall firewall devices may be related to a zero-day vulnerability in the products, according to researchers. Anomalous firewall activity that began on July 15 and involved VPN access through SonicWall SSL VPNs morphed into intrusions the following week, researchers at Arctic Wolf said. “This appears to be...Read More
