Top cybersecurity officials from the U.S., U.K., and other allies say international cooperation among intelligence and law enforcement agencies has been a key factor in successful operations against ransomware groups.
Ransomware actors are utilizing a tool that abuses an out-of-date Windows driver in order to kill security software.
More ransomware groups are developing custom tools for data exfiltration, to deploy second-stage malware and more.
LockBit’s macOS ransomware version is in active development and currently poses no risk to Mac users, but security researchers are concerned about future ransomware threats to the macOS landscape.
Microsoft, Fortra, and the Health-ISAC have obtained a court order to disrupt the use of cracked copies of Cobalt Strike, which are often used in ransomware intrusions.