Infosecurity News
BlackSuit Ransomware Group’s Dark Web Sites Seized in Operation Checkmate
The US and partners from nine countries have taken down part of the ransomware group’s infrastructure
Prolonged Chinese Cyber Espionage Campaign Targets VMware Appliances
Sygnia observed Chinese cyber campaign dubbed Fire Ant deploying sophisticated techniques to gain full compromise of victim environments, discovering isolated assets
New Chaos Ransomware Emerges, Launches Wave of Attacks
Cisco Talos warned that the Chaos group, thought to be formed of former BlackSuit members, has launched a wave of attacks targeted a variety of sectors
Malware Campaign Masquerades as Dating Apps to Steal Data
A large-scale malware campaign known as SarangTrap has been observed using fake dating apps to steal personal data, targeting South Korean users
FBI Exposes The Com’s Criminal Activities and Involvement of Minors
The US FBI has issued public announcements warning families of The Com, an online criminal network involving minors in various illicit activities
Ransomware Deployed in Compromised SharePoint Servers
Microsoft said Chinese actor Storm-2603 is deploying Warlock ransomware following the exploitation of vulnerabilities in on-prem SharePoint systems
UK and Romania Crack Down on ATM Fraudster Network
Investigators assessed that the criminal group’s stolen funds amount to €580,000
Active Campaign Exploits Cloud Flaws for Cryptomining
Wiz believes the active campaign is part of a broader crypto-scam infrastructure, which uses a wide range of exploitation techniques
New York Proposes Cybersecurity Regulations for Water Systems
A series of new cybersecurity regulations related to the water industry have been set out by New York state agencies
Suspected XSS Forum Admin Arrested in Ukraine
The individual is accused of numerous illicit cybercrime and ransomware activities that have generated at least $7m in profit
France: New Data Breach Could Affect 340,000 Jobseekers
The French employment agency’s partner web portal has been accessed by a malicious actor
Clorox Sues IT Service Provider Cognizant for Causing 2023 Cyber-Attack
Cognizant handed over a password to the cybercriminal without asking any authentication questions
US Government Warns of Wide-Ranging Interlock Attacks
A joint US government advisory highlighted novel initial access techniques deployed by Interlock, and urged businesses and critical infrastructure to stay vigilant
Global Ransomware Attacks Plummet 43% in Q2 2025
NCC Group observed a 43% drop in ransomware attacks in Q2 2025, driven by law enforcement actions and internal conflicts in groups
Russian Threat Actors Target NGOs with New OAuth Phishing Tactics
A new wave of phishing attacks exploiting Microsoft 365 OAuth tools has been observed impersonating diplomats to steal access codes
Widespread Net RFQ Scam Targets High-Value Goods
A widespread RFQ scam exploited net payment terms to fraudulently obtain high-value devices
SharePoint 'ToolShell' Vulnerabilities Exploited by Chinese Nation-State Hackers
Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the SharePoint vulnerabilities
UK Confirms Ransomware Payment Ban for Public Sector and CNI
The UK government said a public consultation showed widespread support on a payment ban for public sector and CNI organizations
Ransomware Group Uses AI Chatbot to Intensify Pressure on Victims
Despite being a rebrand of several ransomware families, GLOBAL GROUP innovated with the use of an AI chatbot in the negotiation process
Australian Regulator Alleges Financial Firm Exposed Clients to Unacceptable Cyber Risks
ASIC said the financial services firm’s failings led to a data breach impacting nearly 10,000 clients
