Qilin is a ransomware_group tracked across 50 threat clusters and 166 intelligence report mentions on ThreatCluster. First observed October 23, 2025; most recent activity July 16, 2026.
The Akira ransomware group has been identified as a significant threat to critical infrastructure, with the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the FBI warning of its active ransomware…
Inotiv, an Indiana-based pharmaceutical firm, has confirmed a data breach resulting from a ransomware attack that occurred in August 2025. The company is notifying thousands of individuals whose personal information was…
Check Point Software Technologies disclosed a critical authentication bypass vulnerability (CVE-2026-50751) affecting its Remote Access VPN and Mobile Access products, with exploitation confirmed since May 7, 2026. The…
Synnovis, a UK pathology services provider, has notified healthcare providers of a data breach stemming from a ransomware attack that occurred in June 2024. The breach resulted in the theft of patient data, and Synnovis…
CISA has mandated federal agencies to patch a critical vulnerability in Check Point VPN products within 72 hours due to active exploitation by the Qilin ransomware group. The vulnerability, tracked as CVE-2026-42271,…
In early 2026, the Iranian APT group MuddyWater, affiliated with the Ministry of Intelligence and Security, executed a sophisticated cyber operation disguised as a Chaos ransomware attack. Utilizing social engineering…
An anonymous researcher known as Bikini has released exploit code for over a dozen zero-day vulnerabilities affecting 15 popular open-source projects, including the Linux kernel and Libssh2. The exploits were disclosed…
On June 11, 2026, international law enforcement agencies, including the U.S. Secret Service and Europol, announced the dismantling of the AudiA6 cryptocurrency laundering network, which laundered over $389 million from…
In January 2026, the Chronus Group executed a significant data breach against the Mexican government, compromising 2.3 terabytes of sensitive data from at least 25 agencies. The breach exposed personal information of up…
On May 19, 2026, Microsoft disrupted Fox Tempest, a malware-signing-as-a-service (MSaaS) operation that provided over 1,000 fraudulent code-signing certificates to cybercriminals, enabling them to disguise malware as…