Collecting Cyber-News from over 60 sources

Tag: ransomware

The economics of ransomware 3.0

May 15, 2026 12:00 PM

Tags: alphv, attack, backup, breach, ceo, citrix, control, country, cyber, cyberattack, cybersecurity, data, data-breach, detection, encryption, endpoint, extortion, finance, framework, group, healthcare, HIPAA, incident response, insurance, moveIT, network, nist, office, privacy, ransom, ransomware, risk, russia, service, social-engineering, strategy, supply-chain, technology, threat

Triple extortion mechanism. Ashish Mishra What the Change Healthcare case tells you about real costs: Consider what happened to Change Healthcare in early 2024. The ALPHV group’s attack on this healthcare payments processor didn’t just encrypt systems, it exposed the personal health information of potentially over 100 million Americans and disrupted pharmacy services across the…
Cyberkriminalität: Europas KMU im Visier

May 15, 2026 11:00 AM

Tags: ai, cyberattack, cybercrime, ddos, germany, ransomware, ukraine

Das Bundesinnenministerium hat in dieser Woche seinen aktuellen Bericht zur Cyberkriminalität in Deutschland vorgestellt und zeichnet darin ein deutliches Bild der Bedrohungslage. Besonders im Fokus stehen die zunehmenden Angriffe aus Russland seit Beginn des Ukraine-Kriegs, steigende Ransomware-Fälle, DDoS-Attacken sowie die wachsende Rolle von KI im Cybercrime-Kontext. Warum der Bericht vor allem ein strukturelles Problem für……
82 Prozent aller Netzwerkeinbrüche ohne klassische Malware Gruppen setzen auf Logins statt auf Exploits

May 15, 2026 9:00 AM

Tags: exploit, login, malware, ransomware

First seen on security-insider.de Jump to article: www.security-insider.de/ransomware-logins-statt-exploits-identitaetsschutz-a-2ccc99681c50657fd9278dc092019d4b/
Breach Roundup: US Lawmakers Sound Alarm on AI Bug Hunters

May 15, 2026 12:00 AM

Tags: ai, attack, breach, iran, nvidia, ransomware, ukraine, update

Also, YellowKey Bypasses BitLocker, Å koda Breach, Kingdom Market Operator Jailed. This week, U.S. lawmakers urged action on AI, a BitLocker exploit. Å koda, Nvidia’s GeForce NOW partner and telehealth firm OpenLoop reported breaches. Patch Tuesday. A dark market operator sentenced and pro-Ukraine and Iranian-linked hacking. Nitrogen ransomware attack on Foxconn. First seen on govinfosecurity.com Jump to…
West Pharmaceutical starts restoring operations after ransomware attack

May 14, 2026 6:00 PM

Tags: attack, breach, data, ransomware

The company confirmed data was stolen and encrypted by the attackers. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/west-pharmaceutical-restoring-operations-ransomware-attack/820250/
Major tech manufacturer Foxconn confirms cyberattack hit North American factories

May 14, 2026 5:02 PM

Tags: attack, cyberattack, data, group, ransomware

The ransomware group Nitrogen claimed responsibility for the attack and said it stole 8 terabytes of data spanning more than 11 million files belonging to the company’s top customers. First seen on cyberscoop.com Jump to article: cyberscoop.com/foxconn-cyberattack-disrupts-north-america-factories/
Foxconn Attack Highlights Manufacturing’s Cyber Crisis

May 14, 2026 3:00 PM

Tags: attack, cyber, ransomware

A Nitrogen ransomware attack on Foxconn’s North American facilities is one of 600 hits on manufacturers this year, as gangs increasingly target the sector for its low tolerance for downtime. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/foxconn-attack-manufacturing-cyber-crisis
When ransomware gets physical: cybercriminals turn to threats of violence

May 14, 2026 12:01 PM

Tags: cybercrime, jobs, ransomware, threat

Pay up, or we’ll pay someone to pay you a visit. Cybercrime gangs are increasingly turning to real-world threats – and even hiring local muscle to deliver the message. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/ransomware-physical-threats-violence
Foxconn Confirms Cyberattack as Nitrogen Ransomware Claims 8TB Data Theft

May 14, 2026 11:00 AM

Tags: apple, cyberattack, data, group, ransomware, theft

Foxconn, one of the world’s largest electronics manufacturers and a major supplier to Apple, has confirmed that a recent Foxconn cyberattack disrupted operations at several of its North American facilities. According to online reports, a ransomware group known as Nitrogen claimed responsibility for the incident and alleged that it stole massive amounts of company data.…
Nitrogen Ransomware claims massive data theft from Foxconn

May 14, 2026 10:00 AM

Tags: cyberattack, data, group, ransomware, theft, threat

Foxconn confirmed a cyberattack on some North American factories. The Nitrogen ransomware group claims it stole 8TB of data from the firm. Foxconn confirmed that several of its North American factories were affected by a cyberattack. The manufacturer confirmed it was targeted by threat actors after the Nitrogen ransomware group listed it on its Tor…
Gentlemen RaaS Exploits Fortinet and Cisco Edge Devices for Initial Access

May 14, 2026 9:00 AM

Tags: access, cisco, cyber, data-breach, exploit, fortinet, network, ransomware, service

The Gentlemen ransomware-as-a-service (RaaS) operation is turning exposed Fortinet and Cisco edge devices into a fast lane into enterprise networks and doing it at scale. What began as a rising RaaS brand in mid”‘2025 has, by early 2026, evolved into one of the most active programs on the underground, with hundreds of victims and a…
West Pharmaceutical warns of ransomware attack impacting business operations

May 12, 2026 10:18 PM

Tags: attack, business, data, hacker, network, ransomware, service

West Pharmaceutical Services filed a report with the Securities and Exchange Commission (SEC) on Monday evening warning customers that a hacker breached the company network on May 4, stole data and encrypted systems. First seen on therecord.media Jump to article: therecord.media/west-pharmaceutical-warns-of-ransomware-attack-impacting-operations
Identity takes center stage as a leading factor in enterprise cyberattacks

May 12, 2026 6:19 PM

Tags: attack, cyberattack, identity, ransomware

A new report shows two-thirds of ransomware attacks began with an identity-related breach. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/identity-enterprise-cyberattacks-ai-ransomware/819977/
WannaCry, the ransomware attack that changed the history of cybersecurity

May 12, 2026 1:18 PM

Tags: attack, cyber, cybersecurity, data-breach, defense, flaw, ransomware, tool

WannaCry showed how unpatched flaws and leaked cyber tools can cripple global systems, reshaping cybersecurity defenses worldwide. In memory of the day the digital world was shaken, but learned to fight back. The WannaCry ransomware attack represents one of the most significant events in recent cybersecurity history, not only for its global scale but also…
State-sponsored actors, better known as the friends you don’t want

May 12, 2026 12:19 PM

Tags: ransomware

Responding to a state-sponsored threat is nothing like responding to ransomware, and the differences can make or break the outcome. Learn why your IR plan might need revisiting, and the factors you should consider. First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/state-sponsored-actors-better-known-as-the-friends-you-dont-want/
ICO fines Cl0p victim South Staffs Water over data breach

May 12, 2026 1:19 AM

Tags: attack, breach, cyber, data, data-breach, ransomware

The ICO has levied a reduced fine on South Staffordshire Water following cyber improvements in the wake of a Cl0p ransomware attack First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach
Tables Turned: Gentlemen Ransomware Group Suffers Data Leak

May 12, 2026 12:19 AM

Tags: backup, communications, cybercrime, data, group, leak, ransomware, tactics, tool

Internal Communications Dumped Online, Revealing Fresh Victims, Repeat Tactics. Ransomware group The Gentlemen, a relative newcomer to the cybercrime scene, suffered a leak of its internal communications, revealing previously non-public victims, a variety of tactics, techniques and tools, and a relentless focus on popping backup and storage infrastructure. First seen on govinfosecurity.com Jump to article:…
Staatsanwaltschaft: Ermittlungen zu Cyberangriff auf Südwestfalen-IT erfolglos

May 11, 2026 8:19 PM

Tags: cyberattack, infrastructure, ransomware

Der Angriff gilt als einer der bisher schwersten Schläge gegen die kommunale IT-Infrastruktur in Deutschland. Die Ransomware-Gruppe Akira bleibt unerkannt. Die Staatsanwaltschaft gibt auf. First seen on golem.de Jump to article: www.golem.de/news/staatsanwaltschaft-ermittlungen-zu-cyberangriff-auf-suedwestfalen-it-erfolglos-2605-208550.html
Iranian APT MuddyWater Masquerades as Chaos Ransomware in Elaborate False Flag

May 11, 2026 5:20 PM

Tags: apt, iran, ransomware

The post Iranian APT MuddyWater Masquerades as Chaos Ransomware in Elaborate False Flag appeared first on Daily CyberSecurity. First seen on securityonline.info Jump to article: securityonline.info/muddywater-apt-chaos-ransomware-false-flag-espionage/
UK water company allowed hackers to lurk undetected for nearly two years, regulator finds

May 11, 2026 5:20 PM

Tags: attack, data, group, hacker, office, ransomware

The Information Commissioner’s Office (ICO) fined South Staffordshire Water £963,900 ($1.3 million) on Monday over an attack by the Cl0p ransomware group that led to the personal data of 633,887 customers and employees being published in August 2022. First seen on therecord.media Jump to article: therecord.media/uk-water-company-had-hackers-lurking-for-years
The State of Ransomware Q1 2026

May 11, 2026 5:20 PM

Tags: data, leak, ransomware

ey Findings Ransomware in Q1 2026: Consolidation at Scale During the first quarter of 2026, we monitored more than 70 active data leak sites (DLS) that collectively listed 2,122 new victims. This figure represents a 12.2% decline from the Q4 2025 all-time record of 2,416 victims but remains the second-highest Q1 on record at 117%…
ISX IT-Security Conference 2026 – Vom Schock zur Strategie So gelingt die Ransomware Incident Response

May 11, 2026 5:20 PM

Tags: conference, incident response, ransomware, strategy

First seen on security-insider.de Jump to article: www.security-insider.de/ransomware-incident-response-workshop-tabletop-uebung-a-fa102db1df635b9088a83bee6294e682/
The Canvas Hack Is a New Kind of Ransomware Debacle

May 8, 2026 7:48 AM

Tags: access, breach, hacker, ransomware

Thousands of schools around the US were paralyzed on Thursday after education tech firm Instructure shut down access to its Canvas platform following a breach by hackers going by the name ShinyHunters. First seen on wired.com Jump to article: www.wired.com/story/canvas-hack-shinyhunters-ransomware-instructure/
Iranian government hackers using Chaos ransomware as cover, researchers say

May 8, 2026 12:48 AM

Tags: government, hacker, iran, ransomware

First seen on therecord.media Jump to article: therecord.media/iran-government-hackers-use-chaos-ransomware-as-cover
Businesses hide vast majority of ransomware attacks, report finds

May 7, 2026 6:48 PM

Tags: attack, ransomware

The security firm BlackFog said the number of disclosed incidents it tracked in Q1 was roughly one-tenth of the number of undisclosed incidents. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/ransomware-undisclosed-attacks-blackfog/819595/
VECT-Ransomware Wenn Hacker-Laien zur echten Gefahr werden

May 7, 2026 5:48 PM

Tags: cybercrime, extortion, hacker, ransomware

Ende 2025 tauchte mit VECT eine weitere Ransomware-Gruppe auf, die sich vorgenommen hat, das Geschäft der digitalen Erpressung zu demokratisieren. Durch eine Partnerschaft mit Breachforums, einem der größten Marktplätze für Cyberkriminalität, öffnete VECT seine Plattform für jeden registrierten Nutzer. Das rief Tausende potenzielle Angreifer praktisch über Nacht auf den Plan. Gleichzeitig sicherte sich die Gruppe…
Versicherungsprämien für Cybersicherheit senken

May 7, 2026 5:48 PM

Tags: compliance, cyber, cyberattack, cyersecurity, ransomware, risk-management

Qualys hat heute gemeinsam mit Converge, einem Pionier im Bereich des fortschrittlichen Cyber-Risikomanagements und -Underwritings, ein Angebot angekündigt, das Unternehmen für nachgewiesene Cybersicherheits-Compliance belohnt. Durch die Zusammenarbeit können Qualys-Kunden, die mit <> (ETM) aktiv ein hohes Maß an Sicherheitshygiene verwalten und nachweisen, potenziell Anspruch auf reduzierte Cyberversicherungsprämien von Converge erhalten. Angesichts zunehmender Ransomware-Angriffe, […] First…
Cyber Blind Spots: The hidden technology that poses the greatest security risk

May 7, 2026 4:48 PM

Tags: country, cyber, data, infrastructure, network, ransomware, risk, technology

By Peter Villiers, Director of Cyber Risk at Barrier Networks There’s a growing risk across the UK’s Critical National Infrastructure (CNI) that is placing the country at serious risk of disruption. It isn’t ransomware or a headline-grabbing data breach. It sits within the systems that keep the country running. The risk is growing over time,…
Why Outdated Maintenance Software Is a Growing Ransomware Risk

May 7, 2026 2:48 PM

Tags: access, control, data, ransomware, risk, software

Outdated maintenance software increases ransomware risk by exposing weak access controls, unpatched systems, and critical operational data to attackers. First seen on hackread.com Jump to article: hackread.com/outdated-maintenance-software-growing-ransomware-risk/
Allianz gegen Ransomware in hybriden Umgebungen – NetApp und Commvault bündeln Cyber-Resilienz-Kräfte

May 7, 2026 9:47 AM

Tags: cyber, ransomware, resilience

First seen on security-insider.de Jump to article: www.security-insider.de/netapp-und-commvault-buendeln-cyber-resilienz-kraefte-a-6c5f0a2a6679556ddfa69755c578985d/