TRU Security

Updates from Acronis Threat Research Unit

Acronis
The DragonForce Cartel: Scattered Spider at the gate
Acronis Threat Research Unit (TRU) analyzed DragonForce, a Conti-derived ransomware-as-a-service active since 2023, documenting its malware, affiliate model and links to Scattered Spider.
Insights
November 04, 2025 — 4 min read
Acronis
MSP cybersecurity news digest, October 21, 2025
Here is the MSP cybersecurity news digest for October 21, 2025 from the Acronis Threat Research Unit...
October 28, 2025 — 3 min read
MSP cybersecurity news digest, October 28, 2025
Urgent WSUS RCE flaw actively exploited! Plus: Fake LastPass inheritance emails steal vaults, Iran's...
October 17, 2025 — 3 min read
Acronis Cyberthreats Update, October 2025
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis...
September 29, 2025 — 5 min read
MSP cybersecurity news digest, September 29, 2025
Here is the Acronis Threat Research Unit (TRU) MSP cybersecurity news digest, September 29, 2025
September 23, 2025 — 6 min read
MSP cybersecurity news digest, September 23, 2025
Here is the weekly digest with news from Acronis TRU for the week of September 23, 2025
September 11, 2025 — 3 min read
Acronis Cyberthreats Update, September 2025
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis...
September 01, 2025 — 4 min read
MSP cybersecurity news digest, September 1, 2025
Stay informed on the latest cyber threats: The Orange Belgium data breach affects 850,000 customers....
August 25, 2025 — 4 min read
MSP cybersecurity news digest, August 25, 2025
Microsoft patches 107 vulnerabilities, including Windows Kerberos zero day, PEAR ransomware gang leaks...
August 21, 2025 — 5 min read
MSP cybersecurity news digest, August 13, 2025
Clinical data stolen in cyberattack on dialysis provider DaVita, Chanel, Pandora, Google and Cisco...

Trends and analysis

January 10, 2024 — 12 min read
Acronis
CustomLoader: A malicious link
CustomerLoader was first spotted in June 2023, delivering different payloads to its targets. It is a...
December 12, 2023 — 4 min read
Acronis
Acronis Cyberthreats Update, December 2023
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis...
November 15, 2023 — 10 min read
Acronis
Ransomware diaries, part 1: QazLocker -Cyb3rK1dZ has more...
This article is the first in the ransomware diaries series. We will provide an in-depth look at some...
November 06, 2023 — 4 min read
Acronis
Acronis Cyberthreats Update, November 2023
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis...
November 02, 2023 — 2 min read
Acronis
AV-Test results: Acronis Cyber Protect Cloud scores 10/10...
AV-Test unveiled their Advanced Threat Protection test results for 10 real-life scenarios they ran in...
October 25, 2023 — 18 min read
Acronis
Ursnif, the banking trojan
Ursnif, also known as Gozi or Dreambot, is a banking trojan. Ursnif is typically delivered via...