Ransomware
AI-Generated Malware Powers New Ransomware Campaign by Hive0163
Cybersecurity researchers have discovered that the ransomware group Hive0163 is using AI-generated malware called Slopoly to maintain persistent access during attacks. The discovery highlights how threat actors are leveraging artificial intelligence to rapidly develop new malware frameworks.
Latest
Chicago Cybersecurity Employee Accused of $75M Ransomware Scheme
Federal prosecutors allege Angelo Martino, a former DigitalMint employee, orchestrated ransomware attacks while simultaneously negotiating ransom payments for the victims. The scheme allegedly extracted over $75 million from businesses across multiple industries through coordinated cyberattacks.
Telus Digital Suffers Massive Data Breach by ShinyHunters Group
Telus Digital, a major business process outsourcing provider, has been hit by a sophisticated cyberattack from the ShinyHunters extortion group, with reports suggesting up to one petabyte of data may have been stolen. The attack demonstrates a new breed of strategic data theft operations that use legitimate access to avoid detection.
Telus Probes Cyberattack on Digital Unit by ShinyHunters
Telus Corp. is investigating a cybersecurity breach at its recently reacquired Telus Digital division, where hackers claiming to be ShinyHunters allegedly accessed systems and stole data. The telecom giant says all systems remain operational with no customer service disruptions reported.
England Hockey Probes Ransomware Attack by AiLock Gang
England Hockey is investigating a potential data breach after the AiLock ransomware group claimed to have stolen 129GB of data from the organization. The governing body for field hockey in England is working with external specialists and law enforcement as the threat actors demand ransom payment.
DigitalMint Negotiator Charged in $75M Ransomware Scheme
A Florida man working as a ransomware negotiator allegedly conducted attacks on his own clients while employed at DigitalMint. Angelo John Martino III faces federal charges for extorting $75.25 million across multiple ransomware campaigns in 2023.
Unit 42 Reports 90% of Cyberattacks Exploit Identity Weaknesses
Palo Alto Networks' Unit 42 responded to over 750 major cyber incidents in 2025, revealing that identity vulnerabilities played a material role in nearly 90% of investigations. The report highlights four major trends shaping 2026's threat landscape, including AI acceleration of attacks and supply chain exploitation.
Identity Compromise Behind 80% of Cyber Incidents, Report Shows
Field Effect's 2026 Cyber Threat Outlook reveals that more than 80% of cybersecurity incidents investigated in 2025 stemmed from cloud identity compromise, marking a significant shift in attack strategies. The report shows threat actors are increasingly bypassing traditional exploits by abusing trusted identities and collaboration platforms to gain corporate access.
Identity Compromise Behind 80% of Cyber Incidents in 2025
Field Effect's 2026 Cyber Threat Outlook reveals that more than 80% of cybersecurity incidents investigated in 2025 stemmed from cloud identity compromise, marking a significant shift in attack methods. The report shows attackers are increasingly bypassing traditional exploits by abusing trusted identities and collaboration platforms like Microsoft Teams.
Massive Cyberattack Exposes 25 Million Client Records at Conduent
A recent cyberattack on Conduent Inc. has compromised the records of 25 million clients, raising concerns over identity theft and financial fraud. Investigations are ongoing.
Ransomware Attack Compromises Personal Data at Ngong Ping 360
Ngong Ping 360 has confirmed a ransomware attack that led to the theft of personal information affecting employees, annual pass holders, and suppliers. The company has notified authorities and expressed deep regret over the incident.
Qilin Ransomware Gang Continues to Dominate the Cyber Landscape
The Qilin ransomware group remains a leading threat in cyberattacks, continuing its trend of targeting critical sectors and maintaining a significant share of ransomware incidents.