Federal agencies warn of rising Interlock ransomware attacks targeting healthcare and critical sectors using double extortion and advanced social engineering.

Today, the British government announced it will introduce new cybersecurity measures to prohibit public sector and critical national infrastructure organizations from making ransomware payments to cybercriminals.

In May 2023, Royal began testing a new encryptor called BlackSuit, leading to the group's rebranding. Cyber threat intelligence experts believe that only BlackSuit members use the group’s tools, suggesting the group does not operate a ransomware-as-a-service (RaaS) model.

Law enforcement has seized the dark web leak sites of the BlackSuit ransomware operation, which has targeted and breached the networks of hundreds of organizations worldwide over the past several years.

The intention is to make critical industries “unattractive targets for criminals,” reducing the frequency and impact of incidents.

Storm-2603 exploits SharePoint flaws to deploy Warlock ransomware, affecting 400+ victims. Microsoft urges mitigation.

Experts applauded the proposed change, which would require ransomware victims to notify authorities when paying a hacker's ransom, arguing that this information can help catch cybercriminals and stop their activities.

The British government has announced plans to move forward with a law that would bar public organizations from paying off ransomware attackers. The proposed legislation would add schools, town councils, National Health Service (NHS) hospitals and critical infrastructure managers to a ban which already applies to the national government.

Cisco Talos warned that the Chaos group, thought to be formed of former BlackSuit members, has launched a wave of attacks targeted a variety of sectors