October 30, 2021
Mozilla pulls malicious Firefox extension
Recently, the team behind Mozilla Firefox blocked a dangerous add-on for the popular browser, one that had accrued half a million users.
Acronis Threat Research Unit
Threat Research Unit is a dedicated Acronis unit composed of experienced cybersecurity experts. Our team includes cross-functional experts in cybersecurity, AI, and threat intelligence. We are empowering IT teams with intelligence-driven cyberthreat research and reporting.
Acronis Threat Research Unit's articles
October 26, 2021
Candy giant Ferrara hit by ransomware, impacting production
Just weeks before millions of kids build their annual candy stash, candy giant Ferrara Candy — who you may know as the makers of Nerds, Laffy Taffy, SweetTarts, and other favorites — was struck by a ransomware attack on October 9.
October 26, 2021
MyKings botnet uses cryptominers and clipboard hijackers to steal millions
The MyKings botnet has been around for at least five years, and is as active now as ever. New research has shown just how busy the botnet has been lately, and has uncovered its use of infected computers to mine or steal cryptocurrency through one of two techniques.
October 22, 2021
Brazilian insurance giant Porto Seguro hit with ransomware
Porto Seguro — one of Brazil's largest insurance groups, with around 10 million clients, over 13,000 employees, and an annual revenue of $5.1 billion — has fallen victim to a ransomware attack.
October 07, 2021
Phishing campaign claims 6,000+ Coinbase users as victims
Popular cryptocurrency exchange Coinbase has disclosed that at least 6,000 customers fell victim to a phishing campaign earlier this year, resulting in funds being stolen from their accounts.
October 07, 2021
Europol announces arrest of 'prolific' ransomware operators in joint effort
U.S. and European law enforcement agencies have arrested two ransomware operators in Ukraine, following a series of coordinated attacks against industrial groups in Europe and North America.
October 06, 2021
JVCKenwood and Sandhills Global hit with Conti ransomware
Japanese electronics multinational JVCKenwood and Nebaska-based information processing company Sandhills Global have both fallen victim to Conti ransomware.
October 01, 2021
BloodyStealer Trojan takes aim at gaming accounts
A new Trojan by the name of BloodyStealer is targeting Steam, GOG, Epic Games, Origin, Bethesda, and other gaming-related accounts.
September 29, 2021
Google issues emergency fix for critical Chrome vulnerability
Google recently released an emergency security patch for the Chrome web browser, fixing a zero-day vulnerability that is being actively exploited in the wild.
September 24, 2021
Italian Mafia members arrested over alleged cybercrime activity
Over 100 Italian Mafia members have been arrested for a variety of cybercrime actions, including business email compromise (BEC) scams, SIM swapping, and phishing.
September 20, 2021
Malicious Linux implementation of Cobalt Strike threatens organizations worldwide
Cobalt Strike, a legitimate tool used by security researchers for penetration testing, has been found in the wild supporting Linux-based attacks.
September 17, 2021
REvil ransomware gang returns after two-month hiatus
Two months after shutting down, the notorious ransomware gang REvil seems to have resumed its operations.