GovInfoSecurity6h
Medusa Ransomware Brings Its Own Vulnerable Driver
A Russian-speaking ransomware group has been deploying a malicious Windows PE driver that imitates a legitimate CrowdStrike ...
New VanHelsing ransomware targets Windows, ARM, ESXi systems
A new multi-platform ransomware-as-a-service (RaaS) operation named VanHelsing has emerged, targeting Windows, Linux, BSD, ...
Cyber Guardians: INE Security Champions Cybersecurity Training During National Physicians Week 2025
INE Security, a global provider of cybersecurity training and certification, today announced its initiative to spotlight the ...
Infosecurity Magazine9h
VanHelsingRaaS Expands Rapidly in Cybercrime Market
VanHelsingRaaS, a new ransomware-as-a-service program, infected three victims within two weeks of release, demanding ransoms ...
Fake file converters are stealing info, pushing ransomware, FBI warns
The FBI warns about web-based file conversion projects being malicious Some are dropping malware, others stealing sensitive data FBI urges victims to report the attacks Free online file converters, ...
Medusa ransomware is able to disable anti-malware tools, so be on your guard
Researchers spot Medusa ransomware operators deploying smuol.sys This driver mimics a legitimate CrowdStrike Falcon driver ...
SecurityWeek14h
Medusa Ransomware Uses Malicious Driver to Disable Security Tools
The Medusa ransomware relies on a malicious Windows driver to disable the security tools running on the infected systems.