For providers

Hyper-V virtual machines have been targeted by Russian cyberespionage group RedCurl with its new QWCrypt ransomware, marking the operation's initial foray into ransomware, BleepingComputer reports.

BlackLock ransomware gang dismantled Operations of the BlackLock ransomware-as-a-service gang which was poised to be among the most prolific RaaS groups this year despite only emerging last March have been disrupted by Resecurity researchers after exploiting a misconfiguration within the group's data leak site, according to Security Affairs.

Organizations in the U.S., Mexico, and Honduras have been targeted in new attacks by the Chinese state-sponsored advanced persistent threat operation FamousSparrow, which was believed to have gone on a hiatus over the last three years, according to The Record, a news site by cybersecurity firm Recorded Future.

Reuters reports that teen Department of Government Efficiency staffer Edward Coristine was discovered to have operated network services firm DiamondCDN, which worked with the EGodly cybercrime ring.

Military strike plans of the U.S. against Houthi rebels in Yemen were discussed over the Signal messaging app and exposed by The Atlantic after the inadvertent inclusion of its editor-in-chief in the chat.

Attackers aren't just spending more time targeting the cloud — they're ruthlessly stealing more sensitive data and accessing more critical systems than ever before.