Ransomware scum disrupted utility services with SimpleHelp attacks Good news: The vendor patched the flaw in January. Bad news: Not everyone got the memo Cyber-crime12 Jun 2025 | 1
Winning the war on ransomware with AI: Four real-world use cases AI is your secret weapon against ransomware crooks. Here's how to use it Partner Content
US infrastructure could crumble under cyberattack, ex-NSA advisor warns Infosec in Brief PLUS: Doxxers jailed; Botnets bounce back; CISA questioned over app-vetting program closure; And more Security08 Jun 2025 | 7
Your ransomware nightmare just came true – now what? Feature Don't negotiate unless you must, and if so, drag it out as long as you can CSO06 Jun 2025 | 40
Play ransomware crims exploit SimpleHelp flaw in double-extortion schemes Recompiled binaries and phone threats used to boost the pressure Cyber-crime04 Jun 2025 | 1
Ransomware scum leak patient data after disrupting chemo treatments at Kettering Literally adding insult to injury Cyber-crime04 Jun 2025 | 11
Lumma infostealer takedown may have inflicted only a flesh wound as crew keeps pinching and selling data Infosec In Brief PLUS: Ransomware gang using tech support scam; Czechia accuses China of infrastructure attack; And more! Security02 Jun 2025 | 3
Mysterious leaker GangExposed outs Conti kingpins in massive ransomware data dump exclusive 'It's a high-stakes intelligence war,' analyst explains Cyber-crime31 May 2025 | 30
Aussie businesses now have to fess up when they pay off ransomware crims Move should help government track infections and plan new legislation Public Sector31 May 2025 | 13
US medical org pays $50M+ to settle case after crims raided data and threatened to swat cancer patients Cash splashed on damages, infrastructure improvements, and fraud monitoring Cyber-crime30 May 2025 | 2
Crims defeat human intelligence with fake AI installers they poison with ransomware Take care when downloading AI freebies, researcher tells The Register Cyber-crime30 May 2025 | 7
DragonForce double-whammy: First hit an MSP, then use RMM software to push ransomware Updated SimpleHelp was the vector for the attack Security28 May 2025 |
Ransomware attack on MATLAB dev MathWorks – licensing center still locked down Commercial customers, STEM students all feeling the pain after mega outage of engineering data-analysis tool Cyber-crime27 May 2025 | 23
Ransomware scum leaked Nova Scotia Power customers' info Bank accounts, personal details all hoovered up in the attack Cyber-crime23 May 2025 | 9
Feds finger Russian 'behind Qakbot malware' that hit 700K computers Agents thought they shut this all down in 2023, but the duck quacked again Cyber-crime22 May 2025 | 2
Scottish council admits ransomware crooks stole school data Parents and teachers have personal info, ID documents leaked online, but exam season mostly unaffected Cyber-crime22 May 2025 | 36
Scattered Spider snared financial orgs before targeting shops in Britain, America interview Crew ain't done hopping sectors, Unit 42 threat hunter warns Cyber-crime21 May 2025 | 4
Ransomware attack on food distributor spells more pain for UK supermarkets Peter Green Chilled supplies all the major UK chains Cyber-crime20 May 2025 | 64
Transform your storage ownership experience with guaranteed IT outcomes HPE expands storage guarantee program with new SLAs for cyber resilience, zero data loss, energy efficiency Partner content
Ex-NSA bad-guy hunter listened to Scattered Spider's fake help-desk calls: 'Those guys are good' INTERVIEW Plus, Co-op tells The Reg: 'we took early and decisive action' to block the crooks CSO18 May 2025 | 66
Broadcom employee data stolen by ransomware crooks following hit on payroll provider Updated Tech giant was in process of dropping payroll biz as it learned of breach Cyber-crime16 May 2025 | 1
Cyber fiends battering UK retailers now turn to US stores Interview DragonForce-riding ransomware ring also has 'shiny object syndrome' so will likely move on to another sector soon Cyber-crime15 May 2025 | 6
Here's what we know about the DragonForce ransomware that hit Marks & Spencer Would you believe it, this RaaS cartel says Russia is off limits Cyber-crime15 May 2025 | 23
Metal maker meltdown: Nucor stops production after cyber-intrusion Ransomware or critical infra hit? Top US manufacturer maintains steely silence Cyber-crime14 May 2025 | 13
Ransomware scum have put a target on the no man's land between IT and operations Defenses are weaker, and victims are more likely to pay, SANS warns CSO14 May 2025 | 17
Unending ransomware attacks are a symptom, not the sickness Opinion We need to make taking IT systems 'off the books' a problem for corporate types Cyber-crime12 May 2025 | 63
DOGE worker's old creds found exposed in infostealer malware dumps Infosec in brief PLUS: Celsius scammer sent to slammer; Death-by-hacking victim warns you're never safe; and more Security12 May 2025 | 19
You think ransomware is bad now? Wait until it infects CPUs RSAC Rapid7 threat hunter wrote a PoC. No, he's not releasing it Research11 May 2025 | 64
Data watchdog will leave British Library alone – further probes 'not worth our time' No MFA? No problem – as long as you show you’ve learned your lesson Cyber-crime01 May 2025 | 7
Ransomware scum and other crims bilked victims out of a 'staggering' $16.6B last year, says FBI Biggest threat to America's critical infrastructure? Ransomware Cyber-crime24 Apr 2025 | 7
Fog ransomware channels Musk with demands for work recaps or a trillion bucks In effect: 'Ha ha – the government is borked and so are you' Security22 Apr 2025 | 14
A pot of $250K is now available to ransomware researchers, but it feeds a commercial product Security bods can earn up to $10K per report Research22 Apr 2025 | 3
Guess what happens when ransomware fiends find 'insurance' 'policy' in your files It involves a number close to three or six depending on the pickle you're in Spotlight on RSAC16 Apr 2025 | 20
US sensor giant Sensata admits ransomware derailed ops Props for the transparency though Cyber-crime10 Apr 2025 | 4
Heterogeneous stacks, ransomware, and ITaaS: A DR nightmare Comment Recovery's never been harder in today's tangled, outsourced infrastructure Disaster Recovery Week03 Apr 2025 | 6
Crimelords at Hunters International tell lackeys ransomware too 'risky' Bosses say theft now the name of the game with a shift in tactics, apparent branding Cyber-crime02 Apr 2025 | 6
Ransomware crews add 'EDR killers' to their arsenal – and some aren't even malware interview Crims are disabling security tools early in attacks, Talos says Disaster Recovery Week31 Mar 2025 | 1
Cyber-crew claims it cracked American cableco, releases terrible music video to prove it WOW! DID! SOMEONE! REALLY! STEAL! DATA! ON! 400K! USERS?! Cyber-crime28 Mar 2025 | 7
Security shop pwns ransomware gang, passes insider info to authorities Researchers say 'proactive' approach is needed to combat global cybercrime Security27 Mar 2025 | 7
Ransomwared NHS software supplier nabs £3M discount from ICO for good behavior Data stolen included checklist for medics on how to get into vulnerable people's homes Cyber-crime27 Mar 2025 | 3
VanHelsing ransomware emerges to put a stake through your Windows heart There's only one rule – don't attack Russia, duh Research25 Mar 2025 | 7
Extortion crew threatened to inform Edward Snowden (?!) if victim didn't pay up Don't laugh. This kind of warning shows crims are getting desperate Cyber-crime18 Mar 2025 | 13
New kids on the ransomware block channel Lockbit to raid Fortinet firewalls It's March already and you haven't patched? Cyber-crime14 Mar 2025 |
Medusa ransomware affiliate tried triple extortion scam – up from the usual double demand Feds warn gang still rampant and now cracked 300+ victims around the world Cyber-crime13 Mar 2025 | 4
Rhysida pwns two US healthcare orgs, extracts over 300K patients' data Terabytes of sensitive info remain available for download Cyber-crime10 Mar 2025 | 3
How NOT to f-up your security incident response Feature Experts say that the way you handle things after the criminals break in can make things better or much, much worse Spotlight on RSAC10 Mar 2025 | 15
The NHS security culture problem is a crisis years in the making Analysis Insiders say board members must be held accountable and drive positive change from the top down CSO10 Mar 2025 | 29
Uncle Sam charges alleged Garantex admins after crypto-exchange web seizures $96B in transactions, some even labeled 'dirty funds,' since 2019, say prosecutors Ransomware in Focus07 Mar 2025 | 4
Like whitebox servers, rent-a-crew crime 'affiliates' have commoditized ransomware Interview Which is why taking down chiefs and infra behind big name brand operations isn't working Ransomware in Focus07 Mar 2025 | 2
International cops seize ransomware crooks' favorite Russian crypto exchange Updated Did US Secret Service not get the memo, or? Ransomware in Focus06 Mar 2025 | 12
Qilin ransomware gang boasts of cyberattacks on cancer clinic, Ob-Gyn facility 'No regrets' crew continues extorting victims, leaking highly sensitive data Ransomware in Focus05 Mar 2025 | 2
Cybercrims now licking stamps and sending extortion demands in snail mail Updated First crooks gave up encrypting data, and just stole it – now they don't even bother pilfering info. Sheesh! Bootnotes05 Mar 2025 | 18
Ransomware thugs threaten Tata Technologies with leak if demands not met Hunters International ready to off-shore 1.4 TB of info allegedly swiped from Indian giant Ransomware in Focus05 Mar 2025 | 4
Microsoft signed a dodgy driver and now ransomware scum are exploiting it Five flaws found in Paragon Partition Manager's kernel-level .sys Ransomware in Focus04 Mar 2025 | 13
US Cyber Command reportedly pauses cyberattacks on Russia Infosec In Brief PLUS: Phishing suspects used fishing gear as alibi; Apple's 'Find My' can track PCs and Androids; and more Security03 Mar 2025 | 99
Ransomware criminals love CISA's KEV list – and that's a bug, not a feature 1 in 3 entries are used to extort civilians, says new paper Ransomware in Focus28 Feb 2025 | 5
Southern Water takes the fifth over alleged $750K Black Basta ransom offer Leaked chats and spilled secrets as AI helps decode circa 200K private talks Ransomware in Focus25 Feb 2025 | 31
Experts race to extract intel from Black Basta internal chat leaks Researchers say there's dissent in the ranks. Plus: An AI tool lets you have a go yourself at analysing the data Ransomware in Focus21 Feb 2025 | 3
Ghost ransomware crew continues to haunt IT depts with scarily bad infosec FBI and CISA issue reminder - deep sigh - about the importance of patching and backups Ransomware in Focus20 Feb 2025 | 7
Medusa ransomware gang demands $2M from UK private health services provider Exclusive 2.3 TB held to ransom as biz formerly known as Virgin Care tells us it's probing IT 'security incident' Cyber-crime20 Feb 2025 | 10
London celebrity talent agency reports itself to ICO following Rhysida attack claims Showbiz members' passport scans already plastered online Cyber-crime19 Feb 2025 | 2
US newspaper publisher uses linguistic gymnastics to avoid saying its outage was due to ransomware Called it an 'incident' in SEC filing, but encrypted apps and data exfiltration suggest Lee just can’t say the R word Ransomware in Focus18 Feb 2025 | 12