The Gentlemen ransomware now uses SystemBC for bot-powered attacks

A SystemBC proxy malware botnet of more than 1,570 hosts, believed to be corporate victims, has been discovered following an ...

Justice Department seizes $10 million from ransomware conspirator

A Florida man and former ransomware negotiator pleaded guilty to conspiring to deploy ransomware and extort U.S. companies.

Payouts King ransomware uses QEMU VMs to bypass endpoint security

The Payouts King ransomware is using the QEMU emulator as a reverse SSH backdoor to run hidden virtual machines on ...
CPO Magazine

Ransomware Attack on Healthcare IT Solutions Provider Impacts Dutch Hospitals

A ransomware attack on a healthcare IT solutions provider has disrupted access to patients’ electronic health records (EHRs) ...

“Essentially invisible:” How hackers 'trojan-horsed' QEMU virtual machines to bypass security and drop ransomware

Hidden virtual machines allow attackers to bypass endpoint security and remain undetected Attackers used trusted ...
Infosecurity Magazine

Just Three Ransomware Gangs Accounted for 40% of Attacks Last Month

Qilin, Akira and Dragonforce were responsible for 40% of 672 ransomware incidents reported in March, says Check Point ...
Security Boulevard

Payouts King Takes Aim at the Ransomware Throne

IntroductionIn February 2022, BlackBasta emerged as a successor to Conti ransomware and quickly rose to prominence. BlackBasta was operational for three years until February 2025 when their internal ...
SecurityWeek

Ransomware Hits Automotive Data Expert Autovista

Automotive analysis and data company Autovista blames ransomware for service disruptions across Europe and Australia.

Ransomware Activity Remains Elevated as New Threat Groups Reshape the Landscape, GuidePoint Security Finds

GuidePoint Security, the cybersecurity advisor and services partner organizations rely on to protect what matters most, today released the GuidePoint Research and Intelligence Team's (GRIT) Q1 2026 ...

Foster City hit by ransomware attack, plans to declare state of emergency

The community of Foster City on the Peninsula announced that they have been hit by a cybersecurity breach and are planning to ...

Spring Lake Park schools closed after ransomware attack

A ransomware attack targeting Spring Lake Park Schools forced district leaders to cancel class Monday. “There is no school on ...

Over 200 Japanese firms paid ransomware attackers, 60% fail to recover data

At least 222 Japanese companies have paid ransomware attackers in the past, yet about 60 percent of them still failed to ...