On 20 February, every cyber threat intelligence researcher on the planet discovered a new goldmine – a document of almost 50MB size presented as the history of internal exchanges at the Black Basta ransomware group. The cross-referencing of the victims of cyber attacks mentioned in this file with known victims and, in some cases, their…
Ransomware: on the murky trail of one of the leaders of Black Basta Read More »
Cyber crime has evolved to become a threat to the security of western states, according to a threat intelligence report from Google, published on the eve of the 2025 Munich Security Conference. This coming weekend marks the 61st edition of the Atlanticist conference, which was inaugurated in 1963 to facilitate collaboration between West Germany and…
Google: Cyber crime meshes with cyber warfare as states enlist gangs Read More »
A disgruntled insider appears to have been behind a security incident at the British Museum, which forced the 270-year-old institution to partially close its doors over the weekend of 25 and 26 January following disruption to core IT systems. The incident shuttered two of the museum’s ongoing special exhibitions, one on the history of the…
Cyber incident that closed British Museum was inside job Read More »
With the 19 January 2025 ban on TikTok just days away, American social media users and businesses are facing up to the fact that the video-sharing platform may go dark across the US at the weekend, with some now considering other alternatives at the last minute. On Friday 10 January, a last-ditch attempt by TikTok…
Users protest, flee TikTok as clock ticks on US ban Read More »
In the latest deliberations on the Data Use and Access Bill in the House of Lords, I set out two amendments to offer well overdue updating to the Computer Misuse Act (CMA) of 1990. In preparing for committee stage of the bill I remain incredibly grateful to everyone involved with the CyberUp campaign, their analysis…
Two amendments to the Data (Access and Use) Bill that would have established a statutory legal defence for security professionals and ethical hackers to protect them from prosecution under the 1990 Computer Misuse Act (CMA) have failed to make it beyond a House of Lords committee hearing after being withdrawn. The 34-year-old CMA broadly defines…
Latest attempt to override UK’s outdated hacking law stalls Read More »
Despite being taken down and humiliated by the National Crime Agency (NCA) coordinated Operation Cronos in February 2024, an unknown individual(s) associated with, or claiming to represent, the LockBit ransomware gang has broken cover to announce the impending release of a new locker malware, LockBit 4.0. In screengrabs taken from the dark web that have…
LockBit ransomware gang teases February 2025 return Read More »
Change appears to be afoot in the threat landscape, according to NCC Group’s latest monthly Threat pulse report for November, which reveals insight into an emergent ransomware strain called Ymir that demonstrates how threat actors are increasingly acting cooperatively. The emergence of a strain of ransomware called Ymir may prove to be prima facie evidence…
Emerging Ymir ransomware heralds more coordinated threats in 2025 Read More »
The UK’s National Crime Agency (NCA) has exposed and disrupted two Russian money laundering networks that handled cash stolen by the Ryuk ransomware gang, among others. Operation Destabilise took out the Smart and TGR criminal networks, which besides providing services to cyber criminals also played a key role in drugs and firearms trafficking into the…
NCA takes out network that laundered ransomware payments Read More »
Liverpool’s Alder Hey Children’s NHS Foundation Trust has revealed that a shared service operated by itself and Liverpool Heart and Chest Hospital NHS Foundation Trust was the source of an INC Ransom intrusion that has affected patient data at both hospitals, as well as Royal Liverpool University Hospital. The attack, which came to light on…
Shared digital gateway was source of three NHS ransomware attacks Read More »
