Ransomware
New gentlemen's raas advertised on underground forums
Lisa Kern Larawang ginawa ng AI
Threat actor zeta88 is promoting a new ransomware-as-a-service operation called The Gentlemen's RaaS on hacking forums, targeting Windows, Linux, and ESXi systems. The platform offers affiliates 90 percent of ransom payments and features cross-platform encryption tools developed in Go and C. This development highlights the ongoing commercialization of sophisticated ransomware targeting enterprise environments.
Jaguar Land Rover cyberattack estimated at £1.9 billion cost
A cyberattack that shut down Jaguar Land Rover's operations since August 31 has been estimated to cost the UK £1.9 billion, marking it as the most economically damaging cyber event in the country's history. The incident disrupted production and affected over 5,000 British organisations. Partial production has recently restarted, but full recovery is not expected until January.
Experts warn of ransomware risks in popular VPN tools
Security experts have raised alarms about vulnerabilities in VPN software from Cisco, Citrix, and SonicWall, linking them to increased ransomware threats. Users of these tools face heightened risks of infection, according to a recent analysis. The warning highlights ongoing concerns in enterprise cybersecurity.
Gunra ransomware exploits Windows and Linux with encryption vulnerabilities
The Gunra ransomware group, active since April 2025, targets both Windows and Linux systems worldwide through platform-specific malware variants. While the Windows version employs secure encryption, the Linux variant suffers from critical weaknesses that allow brute-force decryption. Organizations in regions like South Korea have reported infections, highlighting the group's expanding operations.
Report claims fewer firms paying ransomware demands
October 28, 2025 00:38Qilin ransomware uses WSL to run Linux encryptors on Windows
October 24, 2025 05:21LockBit ransomware group launches version 5.0 after resurgence
October 09, 2025 00:45Salesforce refuses extortion demand over 1 billion records breach
October 08, 2025 00:21CISA adds Oracle and other flaws to exploited vulnerabilities catalog
Qilin ransomware deploys Linux binaries against Windows systems
Lisa Kern Larawang ginawa ng AI
The Qilin ransomware group, also known as Agenda, has developed a hybrid attack using Linux payloads on Windows hosts to evade detection. By abusing legitimate remote management tools and exploiting vulnerable drivers, attackers disable defenses and target backups. This cross-platform tactic highlights evolving ransomware sophistication.
Qilin ransomware uses WSL to run Linux encryptors on Windows
Cybersecurity researchers have uncovered a tactic by the Qilin ransomware group that exploits Microsoft's Windows Subsystem for Linux (WSL) to execute Linux-based encryption tools on Windows machines. This method allows attackers to bypass many endpoint detection and response (EDR) systems by operating in a Linux sandbox environment that traditional tools often overlook. The technique highlights the growing sophistication of ransomware operations blending operating systems.
Cl0p ransomware group claims breach of Oracle E-Business Suite
Iniulat ng AI
The Cl0p ransomware group has claimed responsibility for hacking Oracle's E-Business Suite, asserting that it stole sensitive data from companies using the application. The hackers are now notifying affected victims and demanding ransoms to prevent data leaks. Oracle has not yet confirmed the breach.
Ransomware attack disrupts Japan's beer supply
A ransomware attack has hit a key Japanese beer distributor, causing shortages of popular brands across the country. The incident highlights vulnerabilities in supply chains amid rising cyber threats.