The U.S. Treasury Department has taken decisive action by sanctioning the Russian cryptocurrency exchange Suex. This move is in response to the exchange’s alleged involvement in facilitating and laundering transactions linked to at least eight variants of ransomware. The action aligns with governmental efforts aimed at reducing the financial efficacy…
Svenska kraftnät, the national operator of Sweden’s power grid, has reported a data breach that has exposed sensitive information to unauthorized individuals. The breach was publicly disclosed on October 26, 2025, and is linked to the notorious Everest ransomware group. This incident marks a significant concern amid a rising tide…
Critical Infrastructure Security Everest Extortion Group Targets Dublin Airport Akshaya Asokan (asokan_akshaya) • October 27, 2025 Image: Shutterstock A Russian data extortion group named Everest has threatened to release 1.5 million records allegedly obtained from Dublin Airport. This threat follows an investigation into a cybersecurity breach that originated from a…
A financially motivated threat group, identified as FIN12, has been linked to a series of RYUK ransomware incidents since October 2018. This organization demonstrates significant collaboration with TrickBot-affiliated actors while utilizing publicly accessible tools like Cobalt Strike Beacon payloads to penetrate victim networks. Cybersecurity firm Mandiant has attributed these security…
The LockBit ransomware group has made a notable return, launching its latest variant, LockBit 5.0, after a period of inactivity triggered by law enforcement actions earlier in 2024. The resurgence comes despite significant disruptions to their infrastructure and efforts to dismantle their operations during Operation Cronos. Under the direction of…
Critical Vulnerability Discovered in BillQuick Billing Software Exploited by Ransomware Actors Cybersecurity experts revealed a serious vulnerability in the BillQuick time and billing software, which has been actively targeted by threat actors to deploy ransomware. This flaw, designated as CVE-2021-42258, involves an SQL injection attack enabling remote code execution, putting…
A Russian national apprehended in South Korea has been extradited to the United States and appeared in a federal court in Ohio on October 20, facing serious charges tied to his involvement with the notorious TrickBot cybercrime group. Authorities allege that Vladimir Dunaev, 38, along with co-conspirators, orchestrated a scheme…
Western Digital Suffers Data Breach, Exposing Customer Information Western Digital, a major player in digital storage, has confirmed that its systems were breached by an unauthorized third party. During this incident, personal data belonging to customers of the company’s online store was compromised, raising significant concerns about data security and…
Governance & Risk Management , Healthcare , Industry Specific Penetration Testing Reveals Vulnerabilities in State Medicaid Systems Marianne Kolbasuk McGee (HealthInfoSec) • October 21, 2025 HHS OIG’s penetration testing of ten state Medicaid systems highlighted critical security gaps that must be addressed to safeguard data from advanced cyber threats. (Image:…
