Barts Health NHS confirms Cl0p ransomware breach via Oracle flaw. Invoice data exposed. Patient records and clinical systems remain unaffected.

Researchers at Palo Alto Networks’ Unit 42 are tracking two new malicious AI tools, WormGPT 4 and KawaiiGPT, that allow threat actors to craft phishing lures and generate ransomware code.

Qilin ransomware claims it stole internal data from the Church of Scientology, sharing 22 screenshots as proof. The breach remains unconfirmed by the organization.

Hackers stole the names, addresses, Social Security numbers, and financial and medical information of 9,542 people.

The post Inotiv Says Personal Information Stolen in Ransomware Attack appeared first on SecurityWeek.

Threat actors are increasingly weaponizing Velociraptor, a legitimate open-source digital forensics and incident response (DFIR) tool, to establish command-and-control (C2) infrastructure and facilitate ransomware attacks. Huntress analysts have documented multiple incidents spanning September through November 2025 where attackers exploited critical vulnerabilities to gain initial access before deploying Velociraptor for persistent remote access and lateral movement. […]

The post Hackers Weaponize Velociraptor DFIR for Stealthy C2 and Ransomware Deployment appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Marquis said ransomware hackers stole reams of banking customer data, containing personal information and financial records, as well as Social Security numbers, belonging to hundreds of thousands of people. The number of affected people is expected to rise.

Researchers at Cato CTRL have demonstrated that the feature, designed to streamline AI workflows, can be easily weaponized to deploy MedusaLocker ransomware without the user’s knowledge. A new cybersecurity investigation has revealed a critical oversight in Anthropic’s rapidly growing “Claude Skills” ecosystem. Launched in October 2025, Claude Skills enables users to create and share custom […]

The post Examining the Risk of AI-Assisted MedusaLocker Ransomware Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The FBI warns holiday scammers are hitting email, social media, fake sites, delivery alerts, and calls, with new data showing losses and complaints rising.

The post FBI Flags Rising Holiday Scams Spreading Across Email, Social, and Web appeared first on TechRepublic.

The FBI warns holiday scammers are hitting email, social media, fake sites, delivery alerts, and calls, with new data showing losses and complaints rising.

The post FBI Flags Rising Holiday Scams Spreading Across Email, Social, and Web appeared first on TechRepublic.

Threat actors are increasingly abusing the Matanbuchus malicious downloader as a key enabler for hands-on-keyboard ransomware operations, using its backdoor-like capabilities to deliver secondary payloads, move laterally, and maintain long-term persistence on compromised systems. Initially observed in 2020 and offered as Malware-as-a-Service (MaaS), Matanbuchus has steadily evolved, with version 3.0 identified in the wild in […]

The post Threat Actors Using Matanbuchus Downloader to Deliver Ransomware and Maintain Persistence appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Everest ransomware group claims it breached ASUS, stealing over 1TB of data including camera source code. ASUS has been given 21 hours to respond via Qtox.

More and more enterprises are opting for cloud-native application protection platforms (CNAPPs) instead of complex and hard-to-manage cloud security point solutions. Find out where your organization is on its CNAPP maturity journey.

Learn to elevate your cloud security strategy & overcome complexity with Vision One™.

Swiss and German police shut down Cryptomixer, seizing servers, domains and 28M dollars in Bitcoin during an Europol backed action targeting crypto laundering.

In a significant escalation of the global cyber threat landscape, the notorious threat group ShinyHunters appears to be transitioning from data theft to full-scale ransomware operations. Cybersecurity researchers have identified an early build of a new Ransomware-as-a-Service (RaaS) platform dubbed “ShinySp1d3r,” marking the first instance in which the group has eschewed external encryption tools in […]

The post ShinyHunters Develop Sophisticated New Ransomware-as-a-Service Tool appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Hackers stole the personal information of customers and employees before deploying ransomware and crippling Asahi’s operations in Japan.

The post Asahi Data Breach Impacts 2 Million Individuals appeared first on SecurityWeek.

South Korea’s financial sector was hit by a coordinated Russia–North Korea supply chain attack using Qilin ransomware, with 2 TB of sensitive banking data stolen. South Korea’s financial sector suffered a coordinated supply chain attack attributed to Russian and North…

The OnSolve CodeRED platform has been targeted by the Inc Ransom ransomware group, resulting in disruptions and a data breach.

The post Ransomware Attack Disrupts Local Emergency Alert System Across US appeared first on SecurityWeek.

AI-powered cyberattacks are rising fast, and AI firewalls offer predictive, adaptive defense—but their cost, complexity and ROI must be carefully justified as organizations weigh upgrades.

The post Are AI Firewalls Worth the Investment?  appeared first on Security Boulevard.