A welcome press release from Europol: Between 10 and 14 November 2025, the latest phase of Operation Endgame was coordinated from Europol’s headquarters in The Hague. The actions targeted one of the biggest infostealers (Rhadamanthys), the Remote Access Trojan VenomRAT, and the botnet Elysium, all of which played a key role in international cybercrime. Authorities…
Category: Malware
NHS providers reviewing stolen Synnovis data published by cyber criminals
Jordan Sollof reports: Pathology supplier Synnovis is contacting NHS organisations which had data stolen and published online following a major cyber attack last year. The ransomware attack on 4 June 2024, which led to a patient death, caused widespread disruption to NHS services in London including thousands of delayed appointments at King’s College Hospital NHS Foundation Trust and Guy’s…
Yanluowang ransomware IAB pleads guilty
Catalin Cimpanu reports: A Russian man has pleaded guilty to hacking US companies and selling access to ransomware groups. Aleksei Olegovich Volkov went online under the hacker name of chubaka.kor, and worked as an initial access broker (IAB) for the Yanluowang ransomware. Volkov used various techniques to breach a corporate employee’s account, escalate access to the employer’s…
Nevada Refused to Pay Cyberattack Ransom as Systems Sat Compromised for Months
Mark Pearson reports: According to an official document newly released by the Nevada office responsible for the state’s technology infrastructure, Nevada’s state systems sat unknowingly compromised for three months before officials noticed a major ransomware attack and flagged it up in August. […] The perpetrators compromised a password vault server to harvest credentials from 26…
Chicago firm that resolves ransomware attacks had rogue workers carrying out their own hacks, FBI says
Tom Schuba reports: Rogue employees of a Chicago company that specializes in negotiating ransoms to mitigate cyber attacks were carrying out their own piracy in a plot to extort millions of dollars from a series of companies, prosecutors say. Kevin Tyler Martin, a ransomware threat negotiator for River North-based DigitalMint at the time of the…
‘People have had to move house’: Inside the British Library, two years on from devastating cyber attack
Sometimes we forget about breaches when they are out of the immediate news cycle. Here is a reminder that some ransomware attacks have long-lasting impacts. Athena Stavrou reports: Home to more than 170 million items, including Magna Carta, the British Library is one of the world’s largest and most impressive book collections. However, in October…