A sophisticated cyberattack campaign came to light in July 2025, that weaponizes Microsoft Teams calls to deploy the latest iteration of Matanbuchus ransomware. The attack begins with adversaries impersonating IT helpdesk personnel through external Teams calls, leveraging tactics related to social engineering to convince employees to execute malicious scripts. In ongoing support sessions, attackers activate…
The sixth edition of the annual Sophos State of Ransomware report which reveals the reality of ransomware in 2025.This year’s report details how organizations’ experiences of ransomware— both cause and consequences — have evolved over the last 12 months. It also shines light into previously unexplored areas, including the operational factors that left organizations exposed…
Cybercrime is predicted to cost the world $10.5 trillion USD in 2025, according to Cybersecurity Ventures. If it were measured as a country, then cybercrime would be the world’s third largest economy after the U.S. and China. This represents the greatest transfer of economic wealth in history, risks the incentives for innovation and investment, is exponentially…
The U.S. Department of Justice on Thursday unsealed charges against a Russian national accused of leading the development and deployment of malicious software that infected thousands of computers over more than a decade. Rustam Rafailevich Gallyamov, 48, of Moscow, led a group of cybercriminals who developed and deployed Qakbot, a name for software that could…
The vulnerability in question is tracked as CVE-2025-29824 and it was patched by Microsoft with its April 2025 Patch Tuesday updates. The flaw impacts the Windows Common Log File System (CLFS) and it can be exploited by an attacker to escalate privileges. On the day it released the patches, Microsoft revealed that CVE-2025-29824 had been exploited by…
Ascension, one of the largest private healthcare systems in the United States, is notifying patients that their personal and health information was stolen in a December 2024 data theft attack, which affected a former business partner. The health network operates 142 hospitals nationwide, has over 142,000 employees, and has reported a total revenue of $28.3 billion in…
Sophos released its Annual Threat Report 2025: Cybercrime on Main Street, which sheds light on the biggest security threats small and medium-sized businesses faced in 2024, including ransomware as biggest threat. Compromised network edge devices—firewalls, virtual private network appliances, and other access devices—account for a quarter of the initial compromises of businesses in cases that…
UnitedHealth Group is demanding that healthcare providers repay the loans they received from the company after a cyberattack at its tech unit Change Healthcare last year, according to two providers on Friday. The largest U.S. health insurance company loaned out $9 billion to providers who had been struggling after the massive ransomware attack in February…
Kaspersky has reported that over 57,000 ransomware attacks were detected in Southeast Asia during the first half of 2024, with Indonesia accounting for the highest number of incidents. In addition to Indonesia, where 32,803 incidents were blocked, the Philippines experienced 15,208 ransomware attacks, and Thailand saw 4,841 cases. In Malaysia, 3,920 attacks were recorded, followed…
61% of healthcare companies experienced a cloud cyberattack in the yr2023, with 86% of these attacks resulting in financial losses or significant damages. Healthcare remains top amongst favorite for Cybercriminals, 14M patients affected in the U.S. have been affected by data breaches in 2024 so far, reports SonicWall . 91% of the healthcare data breaches…
