The Hacker News

Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access

Interlock ransomware is actively exploiting CVE-2026-20131 (CVSS 10.0) in Cisco FMC, enabling unauthenticated remote code execution as root.
GovInfoSecurity

Interlock Ransomware Exploited Cisco Firewall Flaw for Weeks

Ransomware hackers exploited a flaw with a maximum vulnerability score in Cisco firewall management software weeks before the ...

Amazon security boss says crims abused max-security Cisco firewall flaw weeks before disclosure

Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, ...

LeakNet ransomware uses ClickFix, Deno runtime in stealthy attacks

The LeakNet ransomware gang is now using the ClickFix technique for initial access into corporate environments and deploys a ...

Termite ransomware breaches linked to ClickFix CastleRAT attacks

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.
The Hacker News

Hive0163 Uses AI-Assisted Slopoly Malware for Persistent Access in Ransomware Attacks

AI-generated Slopoly malware used by Hive0163 in 2026 attacks maintained access for over a week, highlighting how AI ...
Dark Reading

'Fog' Hackers Troll Victims With DOGE Ransom Notes

Fog ransomware operators have recently begun using DOGE-themed ransom notes to mock victims, offering a free decryption key in exchange for spreading the malware to others. Unlike earlier campaigns by ...
Dark Reading

Less Lucrative Ransomware Market Makes Attackers Alter Methods

Ransomware actors are ditching Cobalt Strike in favor of native Windows tools, as payment rates hit record lows and data theft surges.
Forbes

The Rise Of AI-Powered Ransomware: The Need To Adapt

Ransomware has always been more than a technical risk—it’s a business, a weapon, and a psychological warfare tool. In my previous Forbes article titled “Ransomware on a Rampage; a New Wake-Up Call,” I ...
ZDNet

Google releases AI-powered ransomware detection features for cloud files

Google is adding ransomware detection to its Drive for desktop utility. The feature uses AI to detect likely attacks and stop syncing encrypted files. It's available as a beta release today for ...
Healthcare Dive

Hacking, ransomware driving more healthcare data breaches: study

Hacking and IT incidents accounted for 88% of patient records exposed from 2010 to 2024, while ransomware made up nearly 40%, according to the research published in JAMA Network Open. The study, which ...
Forbes

Ongoing Ransomware Attacks Exploit Linux Vulnerability, CISA Warns

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Admit it: the first thing you think of when ransomware is ...