SAP npm packages compromised in supply chain attack to steal developer and cloud credentials, GlassWorm campaign resurfaces via sleeper OpenVSX extensions that activate malicious payloads, and more. Here are the latest threats to MSP security.

Acronis TRU uncovered active abuse of AI platforms like Hugging Face and ClawHub for malware delivery, where attackers exploit trust in AI ecosystems and agents, and potentially trigger further malicious actions through AI-driven workflows.

UNC6692 abused Microsoft Teams interactions to deliver the Snow malware toolkit, Bitwarden confirmed a short-lived supply chain compromise affecting its CLI npm package, and more. Here are the latest threats to MSP security.

Data backup is the last line of defense for any organization. Industry research shows that 60% of small-to-medium enterprises that suffer a major data loss event go out of business within six months. Backup is simultaneously the most critical and most neglected operational function in small-to-medium business IT.

Acronis Threat Research Unit (TRU) identified a new variant of the LOTUSLITE backdoor with a theme related to India's banking sector, delivered via DLL sideloading using a legitimate Microsoft-signed executable.

The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis Threat Research Unit (TRU) and Acronis sensors. Figures presented here were gathered in March 2026 and reflect threats that Acronis detected, as well as news stories from the public domain.

Payouts King ransomware uses hidden QEMU virtual machines to evade endpoint detection, New AgingFly malware campaign compromises public sector and health care systems in Ukraine, and more. Here are the latest threats to MSP security.