Tag: ransomware
-
Cybersecurity beginnt im Posteingang warum ESicherheit mehr ist als nur Verschlüsselung
Kommentar von Günter Esch, Geschäftsführer SEPPmail Deutschland GmbH Der Oktober steht ganz im Zeichen der Cybersicherheit. Der Cybersecurity Month soll nicht nur an die steigende Zahl digitaler Bedrohungen erinnern, sondern vor allem Bewusstsein dafür schaffen, dass IT-Sicherheit längst zur Grundvoraussetzung moderner Kommunikation geworden ist. Oft bestimmen hier Themen wie Ransomware-Angriffe, Datenlecks oder kompromittierte Cloud-Zugänge… First…
-
Cybersecurity beginnt im Posteingang warum ESicherheit mehr ist als nur Verschlüsselung
Kommentar von Günter Esch, Geschäftsführer SEPPmail Deutschland GmbH Der Oktober steht ganz im Zeichen der Cybersicherheit. Der Cybersecurity Month soll nicht nur an die steigende Zahl digitaler Bedrohungen erinnern, sondern vor allem Bewusstsein dafür schaffen, dass IT-Sicherheit längst zur Grundvoraussetzung moderner Kommunikation geworden ist. Oft bestimmen hier Themen wie Ransomware-Angriffe, Datenlecks oder kompromittierte Cloud-Zugänge… First…
-
Ransomware Attacks Escalate in APAC Targeting VPN Flaws, Microsoft 365 Logins, Python Scripts
The Asia-Pacific (APAC) region is seeing a rapid surge in number of cyberattacks aimed at its enterprises’, a new report suggests. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/ransomware-targets-apac-region/
-
Oracle E-Business Suite Vulnerability Exploited In Ransomware Attacks
Tags: attack, business, cisa, cybersecurity, exploit, infrastructure, oracle, ransomware, vulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has confirmed that a vulnerability impacting Oracle E-Business Suite customers has seen exploitation in ransomware attacks. First seen on crn.com Jump to article: www.crn.com/news/security/2025/cisa-oracle-e-business-suite-vulnerability-exploited-in-ransomware-attacks
-
Japanese retailer Muji halted online sales after a ransomware attack on logistics partner
Muji halted online sales after a ransomware attack on its logistics partner Askul, disrupting orders, app services, and website access. Japanese retailer giant Muji suspended online sales after a ransomware attack hit its logistics partner Askul. The cyber incident disrupted deliveries and online store functions, including orders and app services. >>Due to a logistics issue…
-
AI-fueled automation helps ransomware-asservice groups stand out from the crowd
Ransomware gangs that offer their affiliates customization and automation are growing faster than those that don’t, a new report finds. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/ai-automation-ransomware-affiliates/803362/
-
Britisches Militär von Cyberattacke getroffen
Großbritannien wird immer häufiger Ziel von schwerwiegenden Cyberangriffen. Jetzt hat es das Militär getroffen.Laut einem Bericht der britischen Zeitung Daily Mail ist es russischen Hackern gelungen, Hunderte sensibler Militärdokumente zu ergaunern. Darunter befinden sich demnach Informationen zu acht Stützpunkten der Royal Air Force und der Royal Navy.Der von der Boulevardzeitung als ‘katastrophal” bezeichnete Sicherheitsvorfall geht auf…
-
Britisches Militär von Cyberattacke getroffen
Großbritannien wird immer häufiger Ziel von schwerwiegenden Cyberangriffen. Jetzt hat es das Militär getroffen.Laut einem Bericht der britischen Zeitung Daily Mail ist es russischen Hackern gelungen, Hunderte sensibler Militärdokumente zu ergaunern. Darunter befinden sich demnach Informationen zu acht Stützpunkten der Royal Air Force und der Royal Navy.Der von der Boulevardzeitung als ‘katastrophal” bezeichnete Sicherheitsvorfall geht auf…
-
AI-enabled ransomware attacks: CISO’s top security concern, with good reason
Ransomware’s AI-powered future: Although CrowdStrike’s latest survey doesn’t provide a full picture of AI’s use by ransomware gangs, the fact that generative AI is proving highly effective in crafting phishing emails that lead to ransomware infections shows the tip of the iceberg CISOs face.CrowdStrike Field CTO Cristian Rodriguez tells CSO, “We’re seeing AI touch every…
-
Cybersecurity beginnt im Posteingang warum ESicherheit mehr ist als nur Verschlüsselung
Der Oktober steht ganz im Zeichen der Cybersicherheit. Der Cybersecurity-Awareness-Month soll nicht nur an die steigende Zahl digitaler Bedrohungen erinnern, sondern vor allem Bewusstsein dafür schaffen, dass IT-Sicherheit längst zur Grundvoraussetzung moderner Kommunikation geworden ist. Oft bestimmen hier Themen wie Ransomware-Angriffe, Datenlecks oder kompromittierte Cloud-Zugänge die Schlagzeilen. Es fällt jedoch auf, dass die Sicherheit von…
-
New Luma Infostealer Malware Steals Browser Data, Cryptocurrency, and Remote Access Accounts
Luma Infostealer, a malware-as-a-service (MaaS) offering, has emerged as a potent threat targeting high-value credentials such as web browser cookies, cryptocurrency wallets, and VPN/RDP account information. Beyond isolated theft, threat actors are employing Luma in the initial infiltration stages of complex campaigns”, ransomware deployment, account hijacking, and internal network compromise. The stolen data fuels identity…
-
Ransomware Payouts Surge to $3.6m Amid Evolving Tactics
According to ExtraHop’s latest threat landscape report, average ransomware payments surged 44% to $3.6m in 2025 despite fewer incidents First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ransomware-payouts-surge-dollar36m/
-
Threat Actors Reportedly Marketing Monolock Ransomware on Dark Web Forums
Tags: cyber, cybercrime, cybersecurity, dark-web, encryption, malicious, marketplace, monitoring, ransomware, software, threatA recent surge in underground cybercrime chatter has shone a spotlight on Monolock Ransomware V1.0, as multiple posts on dark web forums claim that the malicious software is now available for purchase. Cybersecurity researchers monitoring illicit marketplaces report that threat actors are advertising a fully functional ransomware strain, complete with encryption modules, key exchange mechanisms,…
-
Threat Actors Reportedly Marketing Monolock Ransomware on Dark Web Forums
Tags: cyber, cybercrime, cybersecurity, dark-web, encryption, malicious, marketplace, monitoring, ransomware, software, threatA recent surge in underground cybercrime chatter has shone a spotlight on Monolock Ransomware V1.0, as multiple posts on dark web forums claim that the malicious software is now available for purchase. Cybersecurity researchers monitoring illicit marketplaces report that threat actors are advertising a fully functional ransomware strain, complete with encryption modules, key exchange mechanisms,…
-
CISOs’ security priorities reveal an augmented cyber agenda
Tags: access, ai, attack, authentication, automation, awareness, business, cio, ciso, cyber, cybersecurity, data, deep-fake, detection, edr, email, framework, governance, healthcare, incident response, intelligence, malware, microsoft, mssp, phishing, ransomware, risk, service, siem, soc, software, tactics, technology, threat, tool, training, usa, vulnerability, vulnerability-management, zero-trustCSOConsequently, 41% are planning to leverage AI to detect threats, for anomaly detection, and to automate security responses. Other respondents cited plans to leverage AI for malware detection and real-time risk prediction (39%), as well as DLP and improving enterprise system visibility.Further, 40% expect to see AI enhancements as part of their existing security systems,…
-
CISOs’ security priorities reveal an augmented cyber agenda
Tags: access, ai, attack, authentication, automation, awareness, business, cio, ciso, cyber, cybersecurity, data, deep-fake, detection, edr, email, framework, governance, healthcare, incident response, intelligence, malware, microsoft, mssp, phishing, ransomware, risk, service, siem, soc, software, tactics, technology, threat, tool, training, usa, vulnerability, vulnerability-management, zero-trustCSOConsequently, 41% are planning to leverage AI to detect threats, for anomaly detection, and to automate security responses. Other respondents cited plans to leverage AI for malware detection and real-time risk prediction (39%), as well as DLP and improving enterprise system visibility.Further, 40% expect to see AI enhancements as part of their existing security systems,…
-
Cybervorfälle: Nickelhütte Aue, F5-Hack, Folgen falscher CA-Settings bei BEC und mehr
Die Nickelhütte Aue ist Opfer eines aktuellen Cyberangriffs mit Ransomware geworden. Firewall-Hersteller F5 wurde 2023 gehackt, was erst im August 2024 auffiel. Ursache waren Fehler der Mitarbeiter. Beim sogenannten Business Email Compromise (BEC) sind es oft Fehlkonfigurierung des Conditional Access, … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/10/21/cybervorfaelle-nickelhuette-aue-f5-hack-folgen-falscher-ca-settings-bei-bec-und-mehr/
-
Cybervorfälle: Nickelhütte Aue, F5-Hack, Folgen falscher CA-Settings bei BEC und mehr
Die Nickelhütte Aue ist Opfer eines aktuellen Cyberangriffs mit Ransomware geworden. Firewall-Hersteller F5 wurde 2023 gehackt, was erst im August 2024 auffiel. Ursache waren Fehler der Mitarbeiter. Beim sogenannten Business Email Compromise (BEC) sind es oft Fehlkonfigurierung des Conditional Access, … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/10/21/cybervorfaelle-nickelhuette-aue-f5-hack-folgen-falscher-ca-settings-bei-bec-und-mehr/
-
Muji’s minimalist calm shattered as ransomware takes down logistics partner
Japanese retailer halts online orders after attack cripples third-party vendor First seen on theregister.com Jump to article: www.theregister.com/2025/10/21/muji_askul_ransomware/
-
Muji’s minimalist calm shattered as ransomware takes down logistics partner
Japanese retailer halts online orders after attack cripples third-party vendor First seen on theregister.com Jump to article: www.theregister.com/2025/10/21/muji_askul_ransomware/
-
Ransomware Protection: Source Code Stolen, Patients Exposed, and Utilities Breached
In the first half of October 2025, we’ve seen zero-day exploits, source code theft, healthcare breaches, and attackers probing water utilities like they own the place. It’s a loud warning for defenders. Attackers are slipping past perimeters and moving laterally inside systems most people overlook, like medical devices, Salesforce environments, and engineering consoles. In this……
-
UK Ministry of Defense Probes Military Contractor Data Leak
Ransomware Group Lynx Reportedly Stole 4TB of Data. The U.K. Ministry of Defense is investigating an apparent data breach by Russian-speaking ransomware hackers of a building facilities contractor with ties to the military. The Lynx ransomware group posted on its darkweb site samples of what it says is 4 terabytes of data stolen from the…
-
Retail giant Muji halts online sales after ransomware attack on supplier
Japanese retail company Muji has taken offline its store due to a logistics outage caused by a ransomware attack at its delivery partner, Askul. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/retail-giant-muji-halts-online-sales-after-ransomware-attack-on-supplier/
-
Japanese retailer Askul halts online orders, shipments after ransomware attack
Japan’s retail sector has felt ripple effects from a cyberattack that disrupted operations at Askul, which sells office and household goods and also has a logistics business. First seen on therecord.media Jump to article: therecord.media/askul-japan-retailer-cyberattack-disruption
-
Hacker verkaufen Daten von Geiger im Darknet
Die Ransomware-Bande Rhysida versteigert angeblich gestohlene Daten des deutschen Maschinenbau-Unternehmens Geiger im Darknet.Am 17. Oktober hat die Ransomware-Gruppe Rhysida den deutschen Maschinenbauer Geiger auf ihre Opferliste im Darknet gesetzt. Die Hacker bieten dort angeblich erbeutete Daten des Unternehmens zum Verkauf an. Weitere Informationen zu Umfang und Art der Daten geben die Täter nicht. Der geforderte…
-
Microsoft Revokes 200+ Fake Certificates Used in Teams Malware Attack
Microsoft has revoked over 200 fraudulent code-signing certificates used in a ransomware campaign involving fake Teams installers by threat group Vanilla Tempest First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/microsoft-revokes-200-fake/
-
Foreign hackers breached a US nuclear weapons plant via SharePoint flaws
Tags: access, attack, authentication, breach, china, control, corporate, cve, cyber, cybercrime, cybersecurity, data, defense, exploit, flaw, framework, government, group, hacker, identity, infrastructure, intelligence, Intruder, korea, microsoft, monitoring, network, ransomware, reverse-engineering, risk, russia, supply-chain, tactics, technology, theft, threat, vulnerability, zero-day, zero-trustChina or Russia? Conflicting attribution: Microsoft attributed the broader wave of SharePoint exploitations to three Chinese-linked groups: Linen Typhoon, Violet Typhoon, and a third actor it tracks as Storm-2603. The company said the attackers were preparing to deploy Warlock ransomware across affected systems.However, the source familiar with the Kansas City incident tells CSO that a…
-
Ransomware-Gruppe Yurei nutzt Open Source
Sicherheitsforscher von Check Point® Software Technologies Ltd. warnen seit Mitte September 2025 vor einer neuen Ransomware-Bedrohung namens Yurei. Der Name ist ein Begriff aus der japanischen Folklore für rastlose Geister. Die Gruppe verwendet Open Source für ihre Angriffe. Check Point Research … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/10/19/ransomware-gruppe-yurei-nutzt-open-source/
-
Volkswagen Allegedly Hacked in Ransomware Attack as 8Base Claims Data Leak
Volkswagen Group is investigating claims from the 8Base ransomware group, which asserts it has stolen sensitive company data. While the German automaker has stated that its core IT systems are secure, its response leaves open the possibility of a breach through a third-party supplier, raising concerns about the full extent of the incident. The Ransomware…
-
Hackers Dox ICE, DHS, DOJ, and FBI Officials
Plus: A secret FBI anti-ransomware task force gets exposed, the mystery of the CIA’s Kryptos sculpture is finally solved, North Koreans busted hiding malware in the Ethereum blockchain, and more. First seen on wired.com Jump to article: www.wired.com/story/security-news-this-week-hackers-dox-ice-dhs-doj-and-fbi-officials/