Unit 42 saw 4L4MD4R being deployed via ToolShell The crooks are asking for $500 worth of Bitcoin ToolShell is a Microsoft SharePoint Server bug patched in late July The risk for businesses who haven’t patched the ToolShell vulnerability keeps growing after new reports suggest ransomware actors are also joining the exploitation party. Researchers from Palo...Read More

About a third (31%) of ransomware victims were affected multiple times in the last 13 months as gangs exploit ineffective defences and security fragmentation. This is according to the Ransomware Insights Report 2025 from Barracuda Networks, Inc, which also shows that 74% of repeat victims say they are juggling too many security tools, and 61%...Read More

Redazione RHC : 5 August 2025 15:37 The criminal organization known as D4rk4rmy has claimed responsibility for the cyber attack against the Monte-Carlo Société des Bains de Mer (SBM) on its Data Leak Site (DLS). The site contains a post stating that an update will be available in 12 days. Founded in 1863, SBM is the leading...Read More

Ransomware attackers employ quadruple extortion tactics. getty Not only is the threat to business from ransomware hackers not going away, but it’s escalating in the most unexpected of ways. A critical July 22 FBI cybersecurity advisory warned IT support not to reset user passwords in light of ongoing Scattered Spider attacks employing what is known...Read More

Multiple countries in the Caribbean are recovering from cyberattacks affecting crucial government services. The countries are part of what is known colloquially as the Dutch Caribbean, which includes Curaçao, Aruba and Sint Maarten. The islands have nearly half a million residents and are part of the Kingdom of the Netherlands.  The incidents began two weeks...Read More

In the high-stakes world of cybersecurity, chief information security officers (CISOs) are increasingly turning to innovative strategies to fortify their Security Operations Centers (SOCs) against a barrage of evolving threats. Recent insights reveal that top CISOs are prioritizing automation and artificial intelligence to alleviate burnout among SOC teams, which have been plagued by alert fatigue...Read More

The question of whether to criminalise the payment of ransomware demands has lingered at the intersection of cybersecurity, ethics, and public policy for years. And it’s easy to see why. There’s one truth that very few would dispute: paying ransom funds to cybercrime. It feeds a criminal economy that’s become increasingly industrialised, professionalised and, in...Read More

SonicWall investigates possible zero-day amid Akira ransomware surge Pierluigi Paganini August 05, 2025 SonicWall probes possible new zero-day after spike in Akira ransomware attacks on Gen 7 firewalls with SSLVPN enabled. SonicWall is investigating a potential new zero-day after a surge in Akira ransomware attacks targeting Gen 7 firewalls with SSLVPN enabled. The company is...Read More

Company struggled to survive, blaming financial failings. The German mobile phone repair and insurance business Einhaus Group has begun insolvency proceedings. According to media reports, citing German media, a 2023 ransomware attack has continued to affect the business, with managing director Wilhelm Einhaus saying the company’s financial failings were due to the public prosecutor’s office...Read More

Kasabji added: “Isolated, versioned, and access-controlled recovery tiers are becoming non-negotiable.” Ransomware gangs have turned the victim’s own cloud-based tools against them. For example, notorious groups such as BlackCat (ALPHV) and Rhysida have actively exploited access to Azure Blob Storage, Amazon S3 Transfer Acceleration, and backup services such as Azure Storage Explorer to exfiltrate and...Read More