Acronis Threat Research Unit (TRU) analyzed DragonForce, a Conti-derived ransomware-as-a-service active since 2023, documenting its malware, affiliate model and links to Scattered Spider.

Urgent WSUS RCE flaw actively exploited! Plus: Fake LastPass inheritance emails steal vaults, Iran's MuddyWater APT targets government entities and a new RedTiger Discord infostealer.

The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis Threat Research Unit (TRU) and Acronis sensors. Figures presented here were gathered in September 2025 and reflect threats that Acronis detected, as well as news stories from the public domain.

Medusa exploits GoAnywhere MFT, Discord data leaks via Zendesk, plus Vampire Bot and Qilin ransomware attacks. Get the critical MSP cybersecurity news and defense actions now.

Harrods breach tied to supplier compromise leaks 430,000 records, MatrixPDF toolkit weaponizes PDFs for phishing and malware delivery, and more. Here are the latest threats to MSP security.

Here is the Acronis Threat Research Unit (TRU) MSP cybersecurity news digest, September 29, 2025

Major European airports including Heathrow, Brussels, Berlin, and Dublin have reported disruptions in check-in, boarding, and kiosk systems. The outages have been linked to Collins Aerospace’s passenger processing platform MUSE, a system used across many international airports.