Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Ransomware 145 Organizations Compromised by China-Linked Ransomware Hackers and Others Mathew J. Schwartz (euroinfosec) • July 29, 2025 Iamge: Shuttertstock/ISMG Attackers infected hundreds of on-premises SharePoint servers by exploiting the zero-day vulnerabilities now tracked as ToolShell, in some cases instigating attacks by ransomware...Read More
Google’s Threat Intelligence Group (GTIG) uncovered a fast-moving cyber campaign carried out by UNC3944, a financially driven threat actor linked to the groups known as ‘0ktapus,’ ‘Octo Tempest,’ and ‘Scattered Spider.’ Initially flagged by FBI alerts, the campaign was observed shifting its ransomware and extortion tactics toward the U.S. retail sector before rapidly expanding to...Read More
PALO ALTO, Calif., July 29, 2025 /PRNewswire/ — C3SA, a leading data protection and cyber resilience firm, and Mimic, a pioneer in ransomware defense, today announced a strategic partnership to deliver proactive, integrated protection against ransomware. The partnership combines C3SA’s proven capabilities in delivering secure, resilient, and operationally assured infrastructures across Canada’s public and private...Read More
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief: Manufacturing, information technology and healthcare are top targets of cybercriminals, but ransomware attacks on the oil and gas industry increased dramatically between April 2024 and April 2025, spiking 935%, according to a new report from...Read More
FBI Dallas has seized approximately 20 Bitcoins from a cryptocurrency address belonging to a Chaos ransomware member that is linked to cyberattacks and extortion payments from Texas companies. The crypto was seized on April 15, 2025, and was traced to an affiliate named “Hors,” who is suspected of launching the attacks against the companies. “The seized funds...Read More
A newly emerged ransomware-as-a-service (RaaS) gang called Chaos is likely made up of former members of the BlackSuit crew, as the latter’s dark web infrastructure has been the subject of a law enforcement seizure. Chaos, which sprang forth in February 2025, is the latest entrant in the ransomware landscape to conduct big-game hunting and double...Read More
Attackers are increasingly leveraging generative AI to streamline operations. Ransomware attacks surged by 146% over the past year, with ten major ransomware groups collectively exfiltrating 238 terabytes of data – up from 123 TB the year before. According to Zscaler’s 2025 ThreatLabz Ransomware Report, attackers are increasingly leveraging generative AI to streamline operations, prompting calls...Read More
A new cybersecurity report highlights the increasing complexity and destructiveness of ransomware attacks targeting businesses and organisations in 2025, with attackers employing advanced extortion tactics and expanding their methods. Akamai has released a qualitative research report entitled “Building resilience amid a volatile threat landscape,” which provides an analysis of the operations of prolific ransomware groups...Read More
The new Chaos RaaS group is emerging as a dangerous player in the ransomware landscape. Cisco Talos Incident Response investigated several attacks by this new group. Chaos carries out so-called big-game hunting and double extortion attacks. Victims are not only held hostage through data encryption. The attackers also threaten to disclose the data. The attack...Read More
Key Findings: Ransomware attacks blocked by the Zscaler cloud rose 146%, the sharpest spike observed in the past three years. Public extortion cases jumped by 70% based on data leak site analysis. Data exfiltration volumes increased 92%. Manufacturing, Technology, and Healthcare were the top targeted industries, and the Oil & Gas sector experienced a 935%...Read More
