Ransomware-Angriffe nehmen zu, auch beim deutschen Mittelstand. Kriminelle verschlüsseln IT-Systeme und fordern Lösegeld, oft mit der Drohung der Datenveröffentlichung. Krisenverhandler geben Tipps zur Abwehr und zur Wiedererlangung der Kontrolle.
Ransomware-Angriffe nehmen zu, auch beim deutschen Mittelstand. Kriminelle verschlüsseln IT-Systeme und fordern Lösegeld, oft in Bitcoin, und drohen mit Datenveröffentlichung. Krisenverhandler geben Tipps zur Abwehr und Kontrolle.
Meta removed face recognition code from its smart glasses app, while xAI's Grok continues to host deepfakes. Anthropic released a safer AI model, and the US issued new AI threat directives. Europe seeks to distance itself from US Big Tech, and new projects aim to enhance privacy. The FCC proposed rules that could end burner phones, hackers exploited Oracle software, and Microsoft released a massive patch update. Google sued a scam group using its AI, and Trump replaced his intelligence chief pick.
Ransomware group ShinyHunters exploited a critical Oracle PeopleSoft vulnerability (CVE-2026-35273) to target ~100 customers, extorting at least one. The vulnerability, rated 9.8/10, allowed server-side request forgery.
Japan's National Police Agency announced the arrest of two men, one Russian and one Ukrainian, for operating a money laundering website used by criminal groups. The site, "AudiA6," allegedly laundered over €336 million (approx. ¥62.2 billion) in funds, including ransomware proceeds. The operation involved Europol and 10 other countries.
Silent Ransom Group, a cybercrime gang, has been targeting law firms with a novel approach, sending fake IT workers in person to steal data via USB drives or remote access, alongside traditional phishing and social engineering tactics.
Emniyet Genel Müdürlüğü Siber Suçlarla Mücadele Daire Başkanlığı, Mimic Ransomware adlı fidye yazılımının Türk hacker’lar tarafından kullanıldığını tespit etti. Kaan A. isimli şüpheli, fidye yazılımı kullanarak mali müşavir Bilal E.'nin bilgisayarını hackleyerek 7 bin Euro fidye talep etti. Şüpheli tutuklandı ve 12 yıla kadar hapis cezası talebiyle dava açıldı.
A former FBI expert discusses current cyber threats, including AI-powered hacking and ransomware. Also featured is a listener using dermatology tech for sun safety education in schools.
Instructure, operator of the Canvas education platform, announced an agreement with hackers after a ransomware attack that stole student data. Experts believe a ransom was paid, despite government advice against it. The attack affected millions of students globally, including in Australia.
Erfahren Sie in einer praxisnahen Simulation, wie Sie auf einen Ransomware-Angriff strategisch reagieren und mit den Konsequenzen sicher umgehen.
Foxconn, a major electronics manufacturer for Apple, Google, and others, confirms a cyberattack by Nitrogen ransomware gang, affecting North American facilities, with over 11 million files allegedly stolen, including confidential customer data.
Some schools are warning users not to log back into Canvas yet, after a ransomware group claimed credit for a data breach. Half of North America's higher education institutions use the platform.
U.S. prosecutors said a ransomware gang fueled Russian government corruption, and allowed the gang's leaders to avoid paying taxes and dodge the country's military draft.
Lernen Sie, wie Angreifer Active Directory kompromittieren und wie Sie Ihre AD-Umgebung effektiv vor Ransomware und anderen Cyberangriffen schützen.
Die Ransomware-Gruppe 'Sorry' nutzt eine kritische Schwachstelle in cPanel und WHM aus, um Systeme zu kompromittieren. Weltweit sind bereits über 44.000 Instanzen betroffen; Administratoren werden zur sofortigen Installation von Sicherheitsupdates aufgefordert.
Checkmarx, a security firm, has suffered a devastating series of breaches over 40 days. It was first compromised through a supply-chain attack on the Trivy vulnerability scanner on March 19, with attackers pushing malware that stole credentials. Checkmarx's own GitHub account was then breached on March 23, pushing malware to its users. Despite remediation, a new malware wave appeared April 22. The Lapsu$ ransomware group subsequently dumped stolen data on the dark web on March 30, originating from Checkmarx's GitHub repositories. Another security firm, Bitwarden, was also affected in the same Trivy supply-chain attack.
Erfahren Sie in einer praxisnahen Simulation, wie Sie auf einen Ransomware-Angriff strategisch reagieren und mit den Konsequenzen sicher umgehen.
Security researchers at Rapid7 have identified Kyber ransomware as the first confirmed case of ransomware using post-quantum cryptography (PQC). The ransomware, active since September 2025, claims to use ML-KEM1024—a NIST-standardized quantum-resistant algorithm—to encrypt victims' files, though experts say this is primarily a marketing tactic to intimidate non-technical decision-makers. The actual encryption uses AES-256, while a VMware variant was found to falsely claim ML-KEM usage while actually using RSA-4096.
Lernen Sie, wie Angreifer Active Directory kompromittieren und wie Sie Ihre AD-Umgebung effektiv vor Ransomware und anderen Cyberangriffen schützen.
The UK could face hacktivist attacks at scale if embroiled in conflict, with impact similar to recent ransomware incidents, NCSC chief Richard Horne will warn at CyberUK conference. Nation states now account for the most significant cyber incidents, with ransomware attacks hitting Marks & Spencer, Jaguar Land Rover and Royal Mail. Horne echoed MI6 chief’s warning that the UK is in ‘a space between peace and war’ as geopolitical tensions rise with Russia.
Angelo Martino, a former ransomware negotiator at DigitalMint, pleaded guilty to helping the ALPHV/BlackCat ransomware gang extort companies by feeding them confidential victim information including insurance policy limits and negotiation strategies. He is the third ransomware negotiator in the past year to face jail for this scheme, admitting to playing both sides in five incidents. Martino faces up to 20 years in prison and authorities have seized $10 million in assets.
Ransomware-Banden setzen auf KI und das Darknet, um kritische Infrastruktur zu treffen. Ermittler in Koblenz agieren zunehmend proaktiv.
