TRU Security

Updates from Acronis Threat Research Unit

Acronis
The DragonForce Cartel: Scattered Spider at the gate
Acronis Threat Research Unit (TRU) analyzed DragonForce, a Conti-derived ransomware-as-a-service active since 2023, documenting its malware, affiliate model and links to Scattered Spider.
Insights
November 04, 2025 — 4 min read
Acronis
MSP cybersecurity news digest, October 21, 2025
Here is the MSP cybersecurity news digest for October 21, 2025 from the Acronis Threat Research Unit...
October 28, 2025 — 3 min read
MSP cybersecurity news digest, October 28, 2025
Urgent WSUS RCE flaw actively exploited! Plus: Fake LastPass inheritance emails steal vaults, Iran's...
October 17, 2025 — 3 min read
Acronis Cyberthreats Update, October 2025
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis...
September 29, 2025 — 5 min read
MSP cybersecurity news digest, September 29, 2025
Here is the Acronis Threat Research Unit (TRU) MSP cybersecurity news digest, September 29, 2025
September 23, 2025 — 6 min read
MSP cybersecurity news digest, September 23, 2025
Here is the weekly digest with news from Acronis TRU for the week of September 23, 2025
September 11, 2025 — 3 min read
Acronis Cyberthreats Update, September 2025
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis...
September 01, 2025 — 4 min read
MSP cybersecurity news digest, September 1, 2025
Stay informed on the latest cyber threats: The Orange Belgium data breach affects 850,000 customers....
August 25, 2025 — 4 min read
MSP cybersecurity news digest, August 25, 2025
Microsoft patches 107 vulnerabilities, including Windows Kerberos zero day, PEAR ransomware gang leaks...
August 21, 2025 — 5 min read
MSP cybersecurity news digest, August 13, 2025
Clinical data stolen in cyberattack on dialysis provider DaVita, Chanel, Pandora, Google and Cisco...

Trends and analysis

April 28, 2023 — 9 min read
Acronis
Malware with a “Money Message”
The purpose of Money Message ransomware is to encrypt files on a targeted computer, rendering the...
April 26, 2023 — 5 min read
Acronis
Maui: An active and dangerous data wiper
Maui is a wiper that is designed to delete or overwrite data on a computer or digital device, causing...
March 29, 2023 — 9 min read
Acronis
SwiftSlicer: A simple yet dangerous data wiper
On January 25, 2023, ESET Research found a new data wiper in the network of Ukrinform, Ukraine’s...
March 06, 2023 — 15 min read
Acronis
IcedID (BokBot): From banking trojan to backdoor
IcedID, also known as BokBot, was initially a banking trojan when it was discovered in 2017. Now it is...
February 13, 2023 — 7 min read
Acronis
CaddyWiper makes Windows machines unusable
CaddyWiper is an example of data-wiping malware, whose purpose is to corrupt the operating system and...
February 06, 2023 — 8 min read
Acronis
DoubleZero: A data wiper deployed against Ukraine
The DoubleZero wiper — so named for its tactic of zeroing files — was first discovered on March 17,...