PSA: Active exploitation of Microsoft SharePoint “ToolShell” flaws, Targeting Organizations and Allowing Remote Code Execution
New “ToolShell” exploit chain is actively being used to compromise SharePoint servers.
Read MoreRansomware
FBI Warns of Malicious File‑Converter Sites
An FBI alert warns that fake “free” file‑converter sites are pushing malware and ransomware. Researchers detail how the sites mimic legitimate services and steal information and data.
Read MoreUS Government Warns of Medusa Ransomware Targeting Critical Infrastructure
CISA and the FBI warn that Medusa ransomware has compromised more than 300 critical infrastructure organizations.
Read MoreBlue Yonder Ransomware Attack Disrupts Retailers Ahead of Holidays
A ransomware attack on supply chain software provider Blue Yonder has caused significant disruptions for major retailers.
Read MoreCicada3301 Ransomware Group Uses Cross-Platform Attacks to Evade Detection
The Cicada3301 ransomware gang – created in June 2024 – has developed new cross-platform capabilities, allowing them to target both Windows and Linux environments.
Read MoreA New Decryption Method and a New Financial Scam
White Phoenix offers an online version of their decryption software, and the FBI shines a light on a scam involving couriers.
Read MoreXfinity Breach and BlackCat Ransomware
Xfinity suffered a data breach in October and ransomware group BlackCat was raided by the FBI.
Read MoreDecryption and Deprecation
Those affected by Key Group ransomware now have a possible solution, and the sun is setting on the WordPad application.
Read MoreWP Plugin Patch & Akira Defeated
An important WordPress plugin update, and Avast defeats Akira ransomware encryption.
Read MoreExchange Server Updates, Avast Decrypts Ransomware, and Android Devices Subject to Spyware
Today’s brief covers the release of additional recommendations to prevent Exchange Server exploits, Avast is able to decrypt certain variants of ransomware, and Android devices are getting targeted by spyware.
Read More