LATEST POST
‘Spearwing’ RaaS Group Ruffles Feathers in Cyber Threat Scene
Dark Reading reports: Medusa ransomware attacks are increasingly becoming a core tool for a threat group known as “Spearwing,” which has amassed hundreds of victims since 2023; nearly 400, in fact, have been listed on its leak site. The ransom demands when using Medusa ransomware range from $100,000 to a whopping $15 million, according to […]
Data breach at Japanese telecom giant NTT hits 18,000 companies
Bleeping Computer reports: Japanese telecommunication services provider NTT Communications Corporation (NTT) is warning almost 18,000 corporate customers that their information was compromised during a cybersecurity incident. The data breach was discovered in early February 2025, but the exact date when the hackers gained initial access to NTT’s systems hasn’t been determined. “NTT Communications Corporation discovered […]
Ransomware goes postal: US healthcare firms receive fake extortion letters
CSO Online reports: In late February, healthcare organizations across the US started receiving extortion demands by mail claiming that their organization’s data had been stolen in a ransomware attack and giving them 10 days to respond. According to the letters, printed on paper and delivered in envelopes purporting to be from the BianLian ransomware group, […]
US charges Chinese hackers, government officials in broad cyberespionage campaign
ABC News reports that the Department of Justice has announced indictments against 12 Chinese nationals involved in cyberespionage in U.S. v. Wu Haibo et al., U.S. v. Yin Kecheng, U.S. v. Zhou Shuai et al.: Twelve Chinese nationals, including mercenary hackers, law enforcement officers and employees of a private hacking company, have been charged in connection with global […]
Ransomware group claims 1.4 TB data stolen in Tata cyberattack
Candid.Technology reports: A ransomware gang called Hunters International has claimed responsibility for the ransomware attack on Indian tech firm Tata Technologies. The group has listed the company on its dark web leak site and adds that they stole over 730,000 files amounting to nearly 1.4 TB of data, threatening to leak to the public within […]
It’s hard to know what to believe
CISA Series reports: CISA is pushing back against reports that it has been directed to stop tracking Russian cyber threats, calling the claims “fake” and a risk to national security. This is an update to a story that first appeared over the weekend, in which The Guardian reported that a memo deprioritizing Russia was issued—an allegation that […]
Qilin Cybercrime Ring Claims Credit for Lee Newspaper Breach
Dark Reading reports: Qilin, a Russian-speaking cybercrime group, has claimed responsibility for the cyberattack that impacted Lee Enterprises’ operations in early February. Lee Enterprises is one of the largest newspaper groups in the US, with publications in 72 markets, including The Buffalo News, Omaha World-Herald, and the Richmond Times-Dispatch. It filed a report last month with the SEC […]
China-linked APT Silk Typhoon targets IT Supply Chain
Microsoft warns that China-backed APT Silk Typhoon, which was linked to the US Treasury hack, is now targeting global IT supply chains, using IT firms to spy and move laterally. Security Affairs reports: Microsoft reported that China-linked APT group Silk Typhoon has shifted tactics to target IT solutions like remote management tools and cloud apps […]