BumbleBee and AdaptixC2 Facilitate Akira Ransomware via Bing SEO Poisoning

A sophisticated cyber campaign utilizing BumbleBee and AdaptixC2 has been identified, leveraging Bing SEO poisoning to deliver Akira ransomware. This method transforms trusted search traffic into a vector for enterprise compromise. The attack is not characterized by any novel techniques but rather by the efficiency of its execution across multiple stages. The campaign has been linked to previous intrusions reported in 2025, indicating a persistent threat. Organizations relying on Bing for search traffic may be particularly vulnerable to this attack vector. Current mitigation strategies are not detailed, leaving many systems at risk. The attack's scope is significant, affecting potentially numerous enterprises that utilize Bing for search engine optimization.

Key Points: • BumbleBee and AdaptixC2 are used to deliver Akira ransomware via Bing SEO poisoning. • The campaign is notable for its efficiency rather than novelty in attack stages. • Previous intrusions linked to this campaign were reported in 2025, indicating ongoing risk.