A new report from Semperis, based on a study of almost 1,500 organizations globally, shows that hackers are stepping up threat levels and ransomware is still a global epidemic. In 40 percent of attacks threat actors threatened to physically harm executives at organizations that declined to pay a ransom demand. US-based companies experienced physical threats...Read More
Researchers released a decryptor for the FunkSec ransomware Pierluigi Paganini July 31, 2025 Researchers have released a decryptor for the ransomware FunkSec, allowing victims to recover their encrypted files for free. Researchers at Avast developed a decryptor for the FunkSec ransomware. Gen Digital researchers released a decryptor for the FunkSec ransomware after cooperating with law...Read More
New research examining global ransomware trends has revealed that 69% of companies afflicted by ransomware have paid a ransom, with the figure rising to 83% among UK government and public sector organisations. The findings, published in the 2025 Ransomware Risk Report by Semperis, are based on a study involving nearly 1,500 companies across industries in...Read More
A challenge in securing any IT environment is staying ahead of the tactics and technologies that bad actors use to breach an organisation, and now it appears that the democratisation of GenAI is opening up the door to an increase in ransomware campaigns. For years, security practitioners worried about when and how threat actors would...Read More
Akamai Technologies, the cybersecurity and cloud computing company that powers and protects business online, has found that bad actors are using a new quadruple extortion tactic in ransomware campaigns, while double extortion remains the most common approach. With ransomware accounting for more than half of the total data breaches in this region in 2024, Asia...Read More
As the maritime industry, responsible for facilitating nearly 90% of global trade continues to evolve digitally, it has become an increasingly prominent target for advanced cyber adversaries. Recent threat intelligence from Cyble reveals a significant uptick in over a hundred cyberattacks against the sector in the past year alone, with coordinated campaigns by advanced persistent...Read More
The landscape of ransomware threats continues to evolve as attackers adopt increasingly sophisticated techniques to bypass security controls traditionally relied on by organizations. In a revealing recent incident, affiliates of the Qilin ransomware group orchestrated a highly advanced attack using a previously unpublicized vulnerable driver, TPwSav.sys, enabling them to bypass endpoint detection and response (EDR)...Read More
According to a recent report by NCC Group on cyber incidents in the second quarter of this year, Safepay was the fourth biggest ransomware player during the three-month period, behind Qilin, Akira and Play. But looking at May alone, it made 70 attack claims, which made it the most active threat group for the month....Read More
The agencies warn that Scattered Spider is repurposing legitimate, publicly-available remote access tunneling tools, now including Teleport.sh and AnyDesk, to easily bypass security safeguards. Increasingly, it is searching for an organization’s Snowflake access to “[exfiltrate] large volumes of data in a short time, often running thousands of queries immediately,” according to CISA. The group has...Read More
