TRU Security

Updates from Acronis Threat Research Unit

Acronis
ARINC’s common-use passenger processing system MUSE Disruption Impacts Flights Across Europe
Major European airports including Heathrow, Brussels, Berlin, and Dublin have reported disruptions in check-in, boarding, and kiosk systems. The outages have been linked to Collins Aerospace’s passenger processing platform MUSE, a system used across many international airports.
Insights
September 11, 2025 — 3 min read
Acronis
Acronis Cyberthreats Update, September 2025
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis...
August 21, 2025 — 5 min read
MSP cybersecurity news digest, August 13, 2025
Clinical data stolen in cyberattack on dialysis provider DaVita, Chanel, Pandora, Google and Cisco...
August 18, 2025 — 4 min read
MSP cybersecurity news digest, August 4, 2025
Scattered Spider group disrupted, but imitators carry on, Fake OAuth apps and Tycoon phishing kit used...
August 11, 2025 — 3 min read
Acronis Cyberthreats Update, August 2025
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis...
August 05, 2025 — 4 min read
MSP cybersecurity news digest, July 29, 2025
Benign-appearing panda images used by new Koske Linux malware to deliver malicious code, Turkish...
August 04, 2025 — 19 min read
MSPs a top target for Akira and Lynx ransomware
Acronis Threat Research Unit (TRU) analyzed recent samples of Akira and Lynx ransomware families to...
July 24, 2025 — 4 min read
MSP cybersecurity news digest, July 14, 2025
SafePay inflicts major ransomware attack on Ingram Micro, Oyster malware loader spread through SEO...
July 16, 2025 — 4 min read
MSP cybersecurity news digest, July 7, 2025
Zurich nonprofit Radix hit by Sarcoma ramsomware group, resulting in theft of 1.3TB of data, Google...
July 14, 2025 — 3 min read
Acronis Cyberthreats Update, July 2025
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis...

Trends and analysis

September 16, 2025 — 21 min read
Acronis
FileFix in the wild! New FileFix campaign goes beyond POC...
Acronis' Threat Research Unit discovered a rare in-the-wild example of a FileFix attack — a new...
September 03, 2025 — 15 min read
Acronis
Trojanized ScreenConnect installers evolve, dropping...
Over the past months, Acronis TRU (Threat Research Unit) has identified multiple active and ongoing...
July 23, 2025 — 17 min read
Acronis
Threat actors go gaming: Electron-based stealers in disguise
The Acronis Threat Research Unit (TRU) uncovered a new malware campaign involving Leet Stealer, RMC...
July 08, 2025 — 12 min read
Acronis
SafePay ransomware: The fast-rising threat targeting MSPs
SafePay ransomware group has quietly and aggressively built momentum in Q1 2025, striking over 200...
June 24, 2025 — 4 min read
Acronis
MSP cybersecurity news digest, June 24, 2025
Columbian users targeted through sophisticated Shadow Vector malware campaign, Swiss firm Chain IQ and...
June 18, 2025 — 21 min read
Acronis
Shadow Vector targets Colombian users via privilege...
The Acronis Threat Research Unit (TRU) identified an ongoing malware campaign named Shadow Vector that...