DanaBot resurfaces, resumes Windows infections after six-month shutdown, Mass phishing campaign targets hotel bookings with 4,300 fake sites, and more. These are the latest threats to MSP security.
Stay ahead with intelligence-driven cyberthreat research and reporting
December 08, 2025
MSP cybersecurity news digest, November 17, 2025
November 19, 2025
Cooking up trouble: How TamperedChef uses signed apps to deliver stealthy payloads
Acronis Threat Research Unit (TRU) observed a global malvertising / SEO campaign, tracked as “TamperedChef.” It delivers legitimate-looking installers that disguise as common applications to trick users into installing them, establish persistence and deliver obfuscated JavaScript payloads for remote access and control.
November 18, 2025
Acronis Cyberthreats Update, November 2025
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis Threat Research Unit (TRU) and Acronis sensors. Figures presented here were gathered in October 2025 and reflect threats that Acronis detected, as well as news stories from the public domain.
November 10, 2025
MSP cybersecurity news digest November 10, 2025
Must-know cybersecurity news for MSPs: GlassWorm, ClickFix, Gootloader and the dangerous new era of AI-powered malware. Review key threats and a major public-sector breach.
November 10, 2025
Acronis TRU Alliance {VirusTotal}: Tracking FileFix, Shadow Vector, and SideWinder
Introducing the Acronis TRU Alliance Series. This new series highlights collaborative research analysis between Acronis Threat Research Unit (TRU) and other leading threat intelligence teams. In this first post of our collaboration series, we’ve teamed up with VirusTotal (VT) to share practical insights from Acronis TRU on several recent reports.
November 07, 2025
MSP cybersecurity news digest, November 3, 2025
Qilin ransomware abuses Windows Subsystem for Linux to deploy Linux encryptors on Windows, Atroposia malware includes built-in vulnerability scanner for targeted exploitation, and more. Here are the latest threats to MSP security.
Threat Research Unit events
January 20, 2026, 3:00 PM (GMT+0)
The autonomous MSP: Scaling workspace and Microsoft 365 services profitably with AI-driven efficiency
Join Acronis experts and leading MSP innovators on January 13 as we explore how platform-ization and AI are transforming endpoint and Microsoft 365 service delivery.
English
1 hour
Webinar on demandCybersecurity Predictions 2026 Webinar: Tactics, Threats and DefensesJoin the Acronis Threat Research Unit (TRU) for an exclusive webinar on December 10. Discover key cybersecurity predictions for 2026, learn about emerging attack tactics, and explore defense strategie ...English
Webinar on demandBuilding OT cyber resilience to meet new compliance challengesDiscover how leading OT infrastructure operators are adapting their cyber resilience strategies to meet new compliance demands such as IEC 62443, NIS2, NERC-CIP, and GxP.English
Webinar on demandProtect your Microsoft 365 Data against AI-enabled CyberthreatsCybercriminals are using generative AI tools like ChatGPT to more effectively target Microsoft 365 with ransomware and other cyberattacks. Learn how to fight back with integrated data-protection tools ...English
Webinar on demandVirtual conference: Build the Business Case for Upgrading your Operational Technology (OT) Cyber ResilienceIn today’s fast-changing threat landscape, operational technology (OT) resilience is no longer optional. It’s essential. But how can you strength...English
Meet our speakers at upcoming events
CARO Workshop 2026 Innsbruck, Austria
caro2026.orgFebruary 26, 2026
No Payload For You: Inside Sidewinder’s Selective Exploitation Strategy
Eliad Kimhy
Eliad is a Senior Security Researcher at Acronis and has worked with security teams for nearly a decade, helping to build and lead the development of threat intelligence production and publish research-based content for both technical and general audiences.