Lucene search
K

30 matches found

The Hacker News
The Hacker News
added 2026/05/20 2:36 p.m.33 views

Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks

Microsoft on Tuesday said it disrupted a malware-signing-as-a-service MSaaS operation that weaponized the company's Artifact Signing system to deliver malicious code and conduct ransomware and other attacks, compromising thousands of machines and networks across the world. The tech giant attribut...

5.8AI score
Exploits0
CISA
CISA
added 2025/11/13 12:0 p.m.7 views

CISA and Partners Release Advisory Update on Akira Ransomware

Today, Cybersecurity and Infrastructure Security Agency CISA, in collaboration with the Federal Bureau of Investigation, Department of Defense Cyber Crime Center, Department of Health and Human Services, and international partners, released an updated joint Cybersecurity Advisory, StopRansomware:...

7.5AI score
Exploits0References2
The Hacker News
The Hacker News
added 2025/09/11 10:33 a.m.5 views

SonicWall SSL VPN Flaw and Misconfigurations Actively Exploited by Akira Ransomware Hackers

Threat actors affiliated with the Akira ransomware group have continued to target SonicWall devices for initial access. Cybersecurity firm Rapid7 said it observed a spike in intrusions involving SonicWall appliances over the past month, particularly following reports about renewed Akira ransomwar...

9.8CVSS9.6AI score0.15593EPSS
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2025/09/10 5:44 p.m.9 views

Akira Ransomware Group Utilizing SonicWall Devices for Initial Access

Latest update – September 18, 2025 On September 17, 2025, SonicWall disclosed a security breach affecting all SonicWall customers with MySonicWall.com cloud backups enabled. The firm detected suspicious activity targeting MySonicWall.com, through which threat actors were able to access backup...

6.6AI score
Exploits0
HackRead
HackRead
added 2025/08/06 12:4 p.m.8 views

Akira Ransomware Hits SonicWall VPNs, Deploys Drivers to Bypass Security

GuidePoint Security uncovers a new Akira ransomware tactic targeting SonicWall VPNs. The group's use of drivers to disable defenses is a significant threat to businesses...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2025/08/05 5:18 a.m.7 views

SonicWall Investigating Potential SSL VPN Zero-Day After 20+ Targeted Attacks Reported

SonicWall said it's actively investigating reports to determine if there is a new zero-day vulnerability following reports of a spike in Akira ransomware actors in late July 2025. "Over the past 72 hours, there has been a notable increase in both internally and externally reported cyber incidents...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2025/08/02 6:56 a.m.13 views

Akira Ransomware Exploits SonicWall VPNs in Likely Zero-Day Attack on Fully-Patched Devices

SonicWall SSL VPN devices have become the target of Akira ransomware attacks as part of a newfound surge in activity observed in late July 2025. "In the intrusions reviewed, multiple pre-ransomware intrusions were observed within a short period of time, each involving VPN access through SonicWall...

7.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/03/18 12:0 a.m.8 views

Akira Ransomware Bruteforcer

This tool helps decrypt encrypted files from Akira Ransomware Linux/ESXI variant 2024 using a bunch of GPUs...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/01/13 8:7 a.m.13 views

A week in security (January 6 – January 12)

Last week on Malwarebytes Labs: Dental group lied through teeth about data breach, fined $350,000 AI-supported spear phishing fools more than 50% of targets US Cyber Trust Mark logo for smart devices is coming GroupGreeting e-card site attacked in "zqxq" campaign Massive breach at location data...

7AI score
Exploits0
Talos Blog
Talos Blog
added 2024/10/21 4:50 p.m.62 views

Akira ransomware continues to evolve

Akira continues to cement its position as one of the most prevalent ransomware operations in the threat landscape, according to Cisco Talos' findings and analysis. Their success is partly due to the fact that they are constantly evolving. For example, after Akira already developed a new version o...

9.8CVSS10AI score0.97591EPSS
Exploits11
The Hacker News
The Hacker News
added 2024/10/14 8:55 a.m.52 views

Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware

Threat actors are actively attempting to exploit a now-patched security flaw in Veeam Backup & Replication to deploy Akira and Fog ransomware. Cybersecurity vendor Sophos said it has been tracking a series of attacks in the past month leveraging compromised VPN credentials and CVE-2024-40711 to...

9.8CVSS8.2AI score0.88193EPSS
Exploits3
Malwarebytes
Malwarebytes
added 2024/06/24 7:7 a.m.41 views

A week in security (June 17 – June 23)

Last week on Malwarebytes Labs: Microsoft Recall delayed after privacy and security concerns Almost everything you always wanted to know about cybersecurity, but were too afraid to ask, with Tjitske de Vries: Lock and Code S05E13 43% of couples experience pressure to share logins and locations,...

7.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/06/03 7:9 a.m.30 views

A week in security (May 27 – June 2)

Last week on Malwarebytes Labs: Data leak site BreachForums is back, boasting Live Nation/Ticketmaster user data. But is it a trap? The Ticketmaster "breach"—what you need to know Ticketmaster confirms customer data breach How to tell if a VPN app added your Windows device to a botnet Beware of...

6.8AI score
Exploits0
hivepro
hivepro
added 2024/05/01 5:16 p.m.14 views

Akira Ransomware Nets $42 Million from 250+ Victims

...

7.3AI score
Exploits0
CISA
CISA
added 2024/04/18 12:0 p.m.5 views

CISA and Partners Release Advisory on Akira Ransomware

Today, CISA, the Federal Bureau of Investigation FBI, Europol’s European Cybercrime Centre EC3, and the Netherlands’ National Cyber Security Centre NCSC-NL released a joint Cybersecurity Advisory CSA, StopRansomware: Akira Ransomware, to disseminate known Akira ransomware tactics, techniques, and...

7.2AI score
Exploits0References3
hivepro
hivepro
added 2024/02/20 11:19 a.m.34 views

Akira Ransomware Exploits Cisco Flaw for Maximum Impact

Summary: The Akira ransomware has been identified for utilizing the Cisco AnyConnect SSL VPN as its initial access vector, specifically exploiting the CVE-2020-3259 vulnerability. Despite Cisco addressing this vulnerability with patches released in May 2020, the threat remains prevalent. Threat...

5CVSS7.2AI score0.71789EPSS
Exploits0
The Hacker News
The Hacker News
added 2024/02/16 3:42 p.m.104 views

CISA Warning: Akira Ransomware Exploiting Cisco ASA/FTD Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Thursday added a now-patched security flaw impacting Cisco Adaptive Security Appliance ASA and Firepower Threat Defense FTD software to its Known Exploited Vulnerabilities KEV catalog, following reports that it's being likely...

10CVSS9AI score0.99984EPSS
Exploits32
Securelist
Securelist
added 2023/12/13 10:0 a.m.12 views

FakeSG campaign, Akira ransomware and AMOS macOS stealer

Introduction The crimeware landscape is diverse. Cybercriminals try to capitalize on their victims in every possible way by distributing various types of malware designed for different platforms. In recent months, we have written private reports on a wide range of topics, such as new cross-platfo...

7.1AI score
Exploits0
Trellix
Trellix
added 2023/11/29 12:0 a.m.84 views

Akira Ransomware

Akira Ransomware By Alexandre Mundo, Max Kersten · November 29, 2023 First discovered in early 2023, Akira ransomware seemed to be just another ransomware family that entered the market. Its continued activity and numerous victims are our main motivators to investigate the malware’s inner working...

7.6AI score0.21583EPSS
Exploits0
Trellix
Trellix
added 2023/11/29 12:0 a.m.31 views

Akira Ransomware

Akira Ransomware By Trellix · November 29, 2023 This blog was also written by Alexandre Mundo and Max Kersten First discovered in early 2023, Akira ransomware seemed to be just another ransomware family that entered the market. Its continued activity and numerous victims are our main motivators t...

9.1CVSS9.7AI score0.21583EPSS
Exploits0
Rows per page
Query Builder