Threat actors deploying the Black Basta ransomware have exploited the Microsoft PrintNightmare bug as part of their attacks.
A new variant of the AstraLocker found being deployed directly in Microsoft Office attachments reflects a focus by attackers on making a big impact and getting a quick payout.
Researchers from Cisco Talos were able to de-anonymize the infrastructure used by several ransomware groups, including Quantum, Snatch, and DarkAngels.
Researchers say evidence points to Chinese-based Bronze Starlight using five different ransomware families as a method to disguise its actual goal of espionage.
An AvosLocker ransomware attack exploited the Log4j bug in VMware Horizon servers.