Acronis Threat Research Unit

Eldorado ransomware has been active from at least March 2024. It mostly targets U.S. companies, including health care, education and government sectors.

Hunters International ransomware was first spotted in October 2023. While it shares many similarities with Hive ransomware, it is not a rebrand. But like Hive, Hunters International works as ransomware as a service (RaaS) and besides encryption, it also exfiltrates victim data.

Snowflake attacks hit at least 165 organizations, New ValleyRAT campaign uncovered, Warmcookie Windows backdoor pushed via fake job offers, and more. Here are the latest threats to MSP security.

The Acronis Cyberthreats Update reveals threat activity and trends during May 2024.

Data of 560 million Ticketmaster customers for sale after alleged breach, London NHS hospitals revert to paper records after Qilin ransomware cyberattack, Dutch bank ABN Amro discloses data breach, and more. Here are the latest threats to MSP security.

Western Sydney University data breach exposed student data, GhostEngine mining attacks kill EDR security using vulnerable drivers, Google fixes eighth actively exploited Chrome zero-day vulnerability this year, and more. Here are the latest threats to MSP security.

Banco Santander warns of a data breach exposing customer info, WebTPA data breach impacts over 2.4 million insurance policyholders, American Radio Relay League cyberattack takes Logbook of The World offline, and more. Here are the latest threats to MSP security.

Fin7 hacker group leverages malicious Google ads to deliver NetSupport RAT, Ascension Healthcare takes systems offline after cyberattack, The Post Millennial hack leaked data impacting 26 million people, and more. Here are the latest threats to MSP security.

Panda Restaurant Group discloses data breach, Iranian attackers impersonate journalists in social engineering campaign, UnitedHealth pays $22 million ransom, and more. Here are the latest threats to MSP security.

The Acronis Cyberthreats Update reveals threat activity and trends during April 2024.

DPRK hacking groups hit South Korean defense contractors, BlackSuit ransomware claims responsibility for attack on Australian property firm, cyberattack on Canada’s London Drugs causes their stores to temporarily close down, and more. Here are the latest threats to MSP security.

Toyota of Brazil stricken by Hunters International ransomware, Putumayo Energy Company in Columbia attacked by RansomHub ransomware group, and more. Here are the latest threats to MSP security.