Federal and state authorities reportedly are investigating a ransomware attack on a Utah county government that resulted in the leak of more than 2 million files, including sensitive material on a high-profile murder case. Hackers also released jail floor plans, crime scene photos and warrants issued by law enforcement. A ransomware gang known as Interlock...Read More
Ransomware and infostealer threats are evolving faster than most organizations can adapt. While security teams have invested heavily in ransomware resilience, particularly through backup and recovery systems, Picus Security’s Blue Report 2025 shows that today’s most damaging attacks aren’t always about encryption. Instead, both ransomware operators and infostealer campaigns often focus on credential theft, data...Read More
CloudSEK’s latest threat intelligence report, Silicon Under Siege: The Cyber War Reshaping the Global Semiconductor Industry, uncovers a rapidly escalating cyber threat landscape targeting the semiconductor sector. Powering everything from AI and defense systems to smartphones, clean energy, and healthcare, semiconductors have become both a strategic asset and a prime cyber target. The research reveals that...Read More
However the average ransom payment is now over £1 million. Only 17% of organisations hit by ransomware went to pay the ransom. According to DataBarracks’ Data Health Check 2025, three times as many organisations recovered from backups rather than pay a ransom than in 2024. The news comes in the wake of government consultation that...Read More
Trend Micro researchers have identified Charon ransomware, a newly discovered line that employs advanced persistent threat-style techniques previously associated with the Earth Baxia group. The campaign targets enterprises with tailored ransom demands, indicating a high level of reconnaissance and customization designed to maximize pressure on victims. Deployed in a targeted attack against the Middle East’s...Read More
Splunk has released a comprehensive defender’s guide aimed at helping cybersecurity teams detect and prevent ransomware attacks targeting ESXi infrastructure before they can cause widespread damage. The guide comes as organizations continue to face mounting pressure from cybercriminals who increasingly target VMware’s ESXi hypervisor platform as a high-value attack vector. Growing Threat to Critical Infrastructure...Read More
Coveware by Veeam has released its Q2 2025 ransomware report, indicating significant increases in both the frequency and financial impact of targeted social engineering attacks, particularly those involving data exfiltration. The report highlights that average and median ransom payments rose sharply during the second quarter. The average ransom reached USD $1.13 million, a 104% increase...Read More
Ransom payouts hit record levels this quarter, thanks to a dramatic rise in targeted social engineering attacks. Analysis from Coveware by Veeam showed that the average ransom payment rocketed to $1.13 million – up 104% from the first quarter. The median payment rose by a similar amount, doubling to $400,000. This surge was largely down...Read More
NOTE: Every month get the latest ransomware news and analysis from the Halcyon RISE Team – join us for the next Threat Insights webinar (or watch on-demand here): https://t.co/4hYSwyNUPk Here are the key insights from the Halcyon Rise Team (Research, Intelligence, Services, Engineering) based on intelligence collected from our customer base throughout July 2025. The...Read More
