TRU Security

Updates from Acronis Threat Research Unit

Acronis
The DragonForce Cartel: Scattered Spider at the gate
Acronis Threat Research Unit (TRU) analyzed DragonForce, a Conti-derived ransomware-as-a-service active since 2023, documenting its malware, affiliate model and links to Scattered Spider.
Insights
November 04, 2025 — 4 min read
Acronis
MSP cybersecurity news digest, October 21, 2025
Here is the MSP cybersecurity news digest for October 21, 2025 from the Acronis Threat Research Unit...
October 28, 2025 — 3 min read
MSP cybersecurity news digest, October 28, 2025
Urgent WSUS RCE flaw actively exploited! Plus: Fake LastPass inheritance emails steal vaults, Iran's...
October 17, 2025 — 3 min read
Acronis Cyberthreats Update, October 2025
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis...
September 29, 2025 — 5 min read
MSP cybersecurity news digest, September 29, 2025
Here is the Acronis Threat Research Unit (TRU) MSP cybersecurity news digest, September 29, 2025
September 23, 2025 — 6 min read
MSP cybersecurity news digest, September 23, 2025
Here is the weekly digest with news from Acronis TRU for the week of September 23, 2025
September 11, 2025 — 3 min read
Acronis Cyberthreats Update, September 2025
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis...
September 01, 2025 — 4 min read
MSP cybersecurity news digest, September 1, 2025
Stay informed on the latest cyber threats: The Orange Belgium data breach affects 850,000 customers....
August 25, 2025 — 4 min read
MSP cybersecurity news digest, August 25, 2025
Microsoft patches 107 vulnerabilities, including Windows Kerberos zero day, PEAR ransomware gang leaks...
August 21, 2025 — 5 min read
MSP cybersecurity news digest, August 13, 2025
Clinical data stolen in cyberattack on dialysis provider DaVita, Chanel, Pandora, Google and Cisco...

Trends and analysis

October 13, 2025 — 2 min read
Acronis
MSP cybersecurity news digest, October 13, 2025
Medusa exploits GoAnywhere MFT, Discord data leaks via Zendesk, plus Vampire Bot and Qilin ransomware...
October 06, 2025 — 3 min read
Acronis
MSP cybersecurity news digest, October 6, 2025
Harrods breach tied to supplier compromise leaks 430,000 records, MatrixPDF toolkit weaponizes PDFs...
September 25, 2025 — 7 min read
Acronis
ARINC’s common-use passenger processing system MUSE...
Major European airports including Heathrow, Brussels, Berlin, and Dublin have reported disruptions in...
September 16, 2025 — 21 min read
Acronis
FileFix in the wild! New FileFix campaign goes beyond POC...
Acronis' Threat Research Unit discovered a rare in-the-wild example of a FileFix attack — a new...
September 03, 2025 — 15 min read
Acronis
Trojanized ScreenConnect installers evolve, dropping...
Over the past months, Acronis TRU (Threat Research Unit) has identified multiple active and ongoing...
July 23, 2025 — 17 min read
Acronis
Threat actors go gaming: Electron-based stealers in disguise
The Acronis Threat Research Unit (TRU) uncovered a new malware campaign involving Leet Stealer, RMC...