ZLoader Returns: New Variant Uses DNS Tunneling to Evade Detection
A sophisticated new variant of ZLoader malware has emerged with enhanced stealth capabilities, using DNS tunneling to mask command-and-control communications. The version 2.9.4.0 update introduces an interactive shell and custom protocols, marking the malware's concerning evolution after a two-year hiatus.
BlackSuit Ransomware Group Suspected in Tennessee School District Cyberattack
The Tennessee Bureau of Investigation is investigating a major network disruption at Rutherford County Schools that began November 25. While no data breach has been confirmed, the BlackSuit ransomware group is potentially linked to the incident that has forced the district offline.
Romanian Energy Provider Electrica Hit by Ransomware Attack Amid Rising Regional Tensions
Romania's leading electricity distributor Electrica Group faces ransomware attack, implementing security protocols while maintaining critical operations. The incident, potentially linked to pro-Russian groups, comes amid heightened cybersecurity concerns following Romania's contested election.
Healthcare Device Maker Artivion Hit by Data-Stealing Cyberattack
Medical device manufacturer Artivion faces operational disruptions after hackers accessed and stole company data in a November cybersecurity breach. The Georgia-based cardiac device maker was forced to take systems offline, though it claims financial impact will be minimal.
California Hospital Hit by Cyberattack, Forced to Return to Paper Records
Watsonville Community Hospital confirms a cyberattack has disabled their network and electronic systems, forcing staff to revert to manual operations. The incident, which began last Friday, follows previous concerns about the facility's IT infrastructure and continues to impact patient care services.
Stoli's US Operations File for Bankruptcy Following Devastating Ransomware Attack
Stoli Group's US subsidiaries have filed for Chapter 11 bankruptcy, citing an August 2024 cyberattack that crippled operations and $84 million in debt. The company faces multiple challenges, including seized Russian assets and declining market conditions.
Texas Defense Contractor ENGlobal Hit by Ransomware Attack, Operations Disrupted
Houston-based ENGlobal Corporation, which serves major U.S. government agencies, was forced to restrict IT system access following a ransomware attack on November 25. The engineering firm is working with cybersecurity experts to investigate the breach while maintaining essential operations.
Blue Yonder's Ransomware Recovery: Major Retailers Back Online After Holiday Season Attack
Supply chain tech provider Blue Yonder is steadily recovering from a pre-Thanksgiving ransomware attack that disrupted operations for clients including Starbucks and Morrisons. Several affected customers have restored functionality, while the company continues supporting remaining impacted businesses.
Holiday Season Disrupted: Blue Yonder Ransomware Attack Impacts Starbucks and Global Retailers
A major ransomware attack on supply chain software provider Blue Yonder has caused significant disruptions for major retailers including Starbucks and UK supermarket chains. The cybersecurity incident has forced companies to resort to manual processes and backup systems during the critical holiday shopping period.
Ransomware Attack Forces Hoboken City Hall Shutdown and Service Disruptions
A cyber attack on Wednesday paralyzed Hoboken's municipal operations, forcing City Hall closure and suspension of multiple city services. While garbage collection and recreation programs continue, officials are investigating the ransomware incident alongside technical teams working to restore compromised systems.