In a new advisory, the FBI and CISA warn that the BianLian ransomware group has moved to a data theft and extortion model.
The Russian national allegedly used three well-known ransomware variants - LockBit, Babuk and Hive - to target critical infrastructure victims.
CISA warned that a ransomware group exploited vulnerable PaperCut servers in May in order to target the education facilities subsector.
The ransomware task force said in their latest progress report that private sector organizations, governments and cryptocurrency entities need to work together more in swapping information about cyber incidents.
Microsoft has attributed exploitation attempts of CVE-2023-27350 and CVE-2023-27351 to a Clop ransomware affiliate.