Topic: ransomware variants
-
INC Ransomware Blunder Exposes Data of 12 US Organizations
An operational security lapse by the INC ransomware gang allowed forensic investigators to discover and access a persistent repository containing stolen, encrypted data from twelve unrelated U.S. organizations. The discovery was made by analyzing attacker infrastructure, which revealed the gang's...
Read More » -
Microsoft Nukes 200+ Fake Certificates in Teams Malware Attack
Microsoft revoked over 200 fraudulent certificates used by cybercriminals to distribute malware via fake Microsoft Teams installation files, a campaign linked to the Vanilla Tempest group. The attackers employed SEO poisoning and malvertising to trick users into downloading malicious files, which...
Read More » -
Microsoft Thwarts Ransomware Attack on Teams Users
Microsoft invalidated over 200 fraudulent digital certificates to disrupt a ransomware campaign that used fake Teams installers, blocking the Rhysida ransomware's distribution network in early October. The attack, orchestrated by the Vanilla Tempest group, involved malvertising and spoofed websit...
Read More » -
UK Arrests Suspect in RTX Ransomware Attack That Disrupted Airports
A ransomware attack on Collins Aerospace's MUSE software caused widespread flight disruptions at European airports, leading to an arrest by UK authorities. The MUSE software, which runs on separate customer networks, is critical for shared airport operations like check-ins and baggage handling, a...
Read More » -
New Bert Ransomware Group Launches Global Attack with Multiple Variants
A new ransomware called "Bert" is targeting global organizations across healthcare, tech, and event management sectors, with attacks tracked since April 2025. Bert uses multiple malware variants and sophisticated encryption, spreading via phishing and unpatched vulnerabilities, with victims...
Read More »