ARTIKEL SUCHE
Threat Feed QueryDurchsuche alle aggregierten Security-Artikel nach Schlagworten, CVE-IDs und Quellen.
UNC3944 Hackers Evolves from SIM Swap to Ransomware and Data Extortion
<html><body><p>The cybercriminal group UNC3944, which overlaps with public reporting on Scattered Spider, has demonstrated a significant evolution in tactics over the past two years. Initially focusing on telecommunicati
Ransomware Attacks Against Food & Agriculture Industry Doubled – 84 Attacks in 3 Months
<html><body><p>The food and agriculture sector has become a prime target for cybercriminals, with ransomware attacks more than doubling in the past quarter. Security researchers have documented 84 significant ransomware
Initial Access Brokers Plays a Vital Role Modern Ransomware Attacks
<html><body><p>In today’s evolving cyberthreat landscape, Initial Access Brokers (IABs) have emerged as critical facilitators in the ransomware attack chain. These specialized cybercriminals focus exclusively on breachin
DragonForce Ransomware Hits Harrods, Marks and Spencer, Co-Op & Other UK Retailers
<html><body><p>A coordinated wave of cyberattacks has struck major UK retailers in recent weeks, with the DragonForce ransomware group claiming responsibility for breaches at Marks & Spencer, Co-op, and luxury depart
New ‘Bring Your Own Installer (BYOI)’ technique allows to bypass EDR
<html><body><p>A new BYOI technique lets attackers bypass SentinelOne EDR, disable protection, and deploy Babuk ransomware by exploiting the agent upgrade process. Aon’s Stroz Friedberg discovered a new “Bring Your Own I
Threat Actor Bypass SentinelOne EDR to Deploy Babuk Ransomware
<html><body><p>A sophisticated new attack method that disables endpoint security protection has been identified by security researchers, enabling threat actors to deploy ransomware undetected. The technique, dubbed “Bri
New "Bring Your Own Installer" EDR bypass used in ransomware attack
<html><body><p>A new "Bring Your Own Installer" EDR bypass technique is exploited in attacks to bypass SentinelOne's tamper protection feature, allowing threat actors to disable endpoint detection and response (EDR) agen
Ransomware Groups Allegedly Breach IT Networks, Stealing Data from UK Retailers
<html><body><p>A notorious ransomware group dubbed DragonForce has claimed responsibility for a series of cyber attacks targeting major UK retailers, with Co-op now confirming a significant data breach affecting its memb
Schwachstellenmanagement, Ransomware und KI als Treiber der neuen Cyberbedrohungslage
<html><body><p>Der DBIR 2025 macht unmissverständlich klar: Ein moderner, ganzheitlicher Sicherheitsansatz ist unerlässlich. Unternehmen müssen ihre Verteidigungsstrategien neu ausrichten</p></body></html>
US authorities have indicted Black Kingdom ransomware admin
<html><body><p>A 36-year-old Yemeni man behind Black Kingdom ransomware is indicted in the U.S. for 1,500 attacks on Microsoft Exchange servers. U.S. authorities have indicted Rami Khaled Ahmed (aka “Black Kingdom,” of S
Security Affairs newsletter Round 522 by Pierluigi Paganini – INTERNATIONAL EDITION
<html><body><p>A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newslet
Rhysida Ransomware gang claims the hack of the Government of Peru
<html><body><p>The Rhysida Ransomware gang claims the hack of the Government of Peru, the gang breached Gob.pe, the Single Digital Platform of the Peruvian State. The Rhysida ransomware gang claims responsibility for hac
Yemeni Man Charged in U.S. for Black Kingdom Ransomware Deployed on Schools & Business Networks
<html><body><p>A Yemeni national, Rami Khaled Ahmed, aged 36, has been indicted by federal authorities in the Central District of California for allegedly orchestrating a cyberattack campaign using Black Kingdom ransomwa
Co-op confirms data theft after DragonForce ransomware claims attack
<html><body><p>The Co-op cyberattack is far worse than initially reported, with the company now confirming that data was stolen for a significant number of current and past customers. [...]</p></body></html>
US indicts Black Kingdom ransomware admin for Microsoft Exchange attacks
<html><body><p>A 36-year-old Yemeni national, who is believed to be the developer and primary operator of 'Black Kingdom' ransomware, has been indicted by the United States for conducting 1,500 attacks on Microsoft Excha
New Report Warns of Ransomware Actors Building Organizational Structure For Complex Attacks
<html><body><p>A new report by Coveware reveals a significant shift in the ransomware landscape, with threat actors evolving their organizational structures to execute increasingly complex attacks. As we approach the one
Windows Security in 2025: Battling Sophisticated Threats with Advanced Defenses
<html><body><p>The Windows security landscape has dramatically evolved in early 2025, marked by increasingly sophisticated attack vectors and Microsoft’s accelerated defensive innovations. February 2025 witnessed a sharp
Ukrainian extradited to US for Nefilim ransomware attacks
<html><body><p>A Ukrainian national has been extradited from Spain to the United States to face charges over allegedly conducting Nefilim ransomware attacks against companies. [...]</p></body></html>
Nitrogen Ransomware Actors Attacking Organization With Cobalt Strike & Erases Log Data
<html><body><p>The Nitrogen ransomware group was first detected in September 2024 and initially it targeted organizations in the United States and Canada before expanding operations into parts of Africa and Europe. While
Securing Critical Infrastructure – CISO’s 2025 Playbook
<html><body><p>Critical infrastructure, including energy grids, transportation systems, healthcare networks, and water supplies, forms the backbone of modern society. In 2025, the stakes for securing these systems have n