EncryptHub Ransomware and Infostealer Campaign Targets 618 Organizations Globally
The EncryptHub threat actor, also known as Larva-208, compromised at least 618 organizations through spear-phishing and social engineering tactics. They utilized SMS and voice phishing, creating fake login pages mimicking VPN services like Cisco and Microsoft 365. After gaining access, they deployed PowerShell scripts and malware for persistence and data theft, including infostealers targeting cryptocurrency wallets and password managers. A custom ransomware encryptor was also used, demanding payment via USDT. Read more
Jasper Network Breach: City Investigates Cybersecurity Incident
The city of Jasper, Alabama, is investigating a network security breach discovered on February 20, 2025. Officials activated their incident response plan, deploying cybersecurity experts to assess unauthorized access. Initial findings indicate that the breach did not compromise personal data or affect municipal court and public safety systems. The city is committed to transparency and will notify the public of any further developments as the investigation continues. Read more
Lazarus Group Stole $1.5 Billion in Bybit Hack by Exploiting a Safe{Wallet} Developer Machine
North Korean hackers from the Lazarus Group executed a $1.5 billion theft from Bybit by compromising a Safe{Wallet} developer machine. The attack involved injecting malicious JavaScript into Safe{Wallet}’s infrastructure accessed by Bybit signers. After the breach was executed, malicious code was removed from the hosting service. Forensics revealed links to previous hacks, confirming the sophistication of the Lazarus Group in targeting high-value cryptocurrency assets. Read more
Black Basta Ransomware Costs Southern Water £4.5 Million
Southern Water reported £4.5 million in expenses following a ransomware attack by the Black Basta group in February 2024. Although no operational systems were affected, the breach triggered extensive cybersecurity and legal measures. The attack involved data theft from a limited server segment, with the company engaging cybersecurity experts and notifying individuals potentially impacted. The financial implications are significant, mirroring previous pollution management costs. Read more
DISA Data Breach Impacts 3.3 Million Americans’ Social Security
DISA Global Solutions experienced a data breach affecting 3.3 million individuals, with sensitive information like Social Security numbers and financial account details compromised. The breach occurred between February and April 2024, discovered in late April but disclosed in January 2025. DISA reportedly paid a ransom to prevent data leaks, offering 12 months of credit monitoring to affected individuals. Read more
Top Cyber Threats Facing Enterprise Businesses in 2025: A Comprehensive Guide
Dive into the top cyber threats for 2025, that have targeted critical infrastructure sectors such as healthcare, finance, and telecommunications. Learn about the vulnerabilities to ransomware, data breaches, and DDoS attacks. Organizations are urged to adopt proactive strategies, including enhanced endpoint security and employee training, to mitigate risks. Stay informed to better protect your business from emerging threats. Read more
