Akira Ransomware Group Targets Critical Infrastructure, Extracts $42 Million

Akira Ransomware Group Targets Critical Infrastructure, Extracts $42 Million

First seen 14 Nov 2025, 11:11 UTC Mainichi.JpFilestore.FortinetCisaThecyberexpressCyberscoop+3 71% similarity 83.0

Article Content

Browse articles
ThreatCluster

The Akira ransomware group has been identified as a significant threat to critical infrastructure, with the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the FBI warning of its active ransomware attacks. Since its emergence in March 2023, Akira has exploited vulnerabilities in edge devices and backup servers, affecting at least 250 organizations and generating illicit gains of approximately $42 million.

ThreatCluster AI

Community

Browse all →