Interlock ransomware is actively exploiting CVE-2026-20131 (CVSS 10.0) in Cisco FMC, enabling unauthenticated remote code execution as root.

Phishing emails that were sent last week as part of an extensive ransomware campaign designed to target government employees and contractors were also found in the inboxes of Army Cyber Command ...

Cybersecurity news of concern. There has been a 49% year-over-year increase in publicly disclosed ransomware attacks, reaching a record 1,174 global incidents, alongside evidence of a ...

The Australian Cyber Security Centre (ACSC) has launched a new cyber security campaign encouraging all Australians to protect themselves against online threats. The initial focus of the campaign is ...

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.

A vulnerability in Fortra’s GoAnywhere Managed File Transfer (MFT) tool with a CVSS score of 10.0 is being actively exploited in ransomware attacks, Microsoft has warned. The tech giant published a ...

interview It all started as an idea for a research paper. … Within a week, however, it nearly set the security industry on fire over what was believed to be the first-ever AI-powered ransomware. A ...

South Korean security researchers have uncovered a widespread cyberattack campaign by a subgroup of the notorious North Korean "ScarCruft" threat actor that is actively infecting organizations across ...

Kraken ransomware measures system performance before deciding the scale of encryption damage Shadow copies, Recycle Bin, and backups are deleted before encryption starts Windows, Linux, and ESXi ...

When Microsoft patched a vulnerability last summer that allowed threat actors to use Windows’ shortcut (.lnk) files in exploits, defenders might have hoped use of this tactic would decline. They were ...