Thought Leadership
Hacker Group
A group of criminals is causing almost half a billion euros in damage worldwide with online extortion. Investigators have now succeeded in striking a major blow against the cyber criminals.
3-pillar program
The British government has fleshed out its anti-ransomware strategy. On Tuesday, the Home Office published plans for three key measures: a payment ban for public institutions and critical infrastructure, mandatory reporting before ransom payments are made and a general obligation to report ransomware attacks.
Relatively young but increasingly active hacker group
The US healthcare organization Kettering Health continues to struggle with the consequences of a massive cyberattack.
Targeted phishing campaigns
Medusa ransomware has posed a growing threat to companies worldwide since the beginning of 2025. Check Point warns of the increasing activity of this hacker group.
Ransomware group develops brute force framework
The ransomware group BlackBasta has developed a powerful tool to automate brute force attacks on edge network devices such as firewalls and VPNs. The framework, called “BRUTED”, allows attackers to crack targeted credentials and scale ransomware attacks on vulnerable networks.
Patches available
In January 2025, Arctic Wolf’s threat research team observed suspicious activity on Fortinet FortiGate firewall devices being exploited by the new SuperBlack ransomware. This vulnerability could jeopardize companies that have not yet applied the patch and highlights the growing threat of targeted cyberattacks.
Further investigations underway
A major blow against cybercrime: Rostislav Panev, a 51-year-old citizen of Russia and Israel, has been extradited from Israel to the United States. He is accused of having worked as a developer for the notorious ransomware group LockBit.
Draft bill
The British government is planning far-reaching measures in the fight against ransomware attacks. A new draft law stipulates that public institutions and operators of critical infrastructure will no longer be allowed to make ransom payments to cyber criminals in future.
Not responding to blackmail
Japanese electronics manufacturer Casio has published new details on the ransomware incident from October 2024. Following the conclusion of the investigation, it is now clear that the personal data of around 8,500 people was compromised.
According to claims by Space Bears
French IT service provider Atos has denied claims by ransomware group Space Bears of a successful attack on company systems – but admits that Atos-related data was found on compromised third-party infrastructure.
