Threats Archives

A shelf is seen bare in the frozen foods section of a Whole Foods store on June 11, 2025 in San Rafael, California. United Natural Foods, the primary food distributor to Whole Foods, paused deliveries to Whole Foods stores after a cyberattack crippled its system. Some Whole Foods stores are experiencing empty shelves and freezers. The company said this week that the attack will cost them up to $400 million in lost sales. (Photo by Justin Sullivan/Getty Images)

United Natural Foods loses up to $400M in sales after cyberattack

The food distributor and wholesaler completely shut down its systems upon discovering the attack last month, yet core systems were restored and normal operating capacity returned within…

1 day ago By Matt Kapko

The Department of Justice building is seen in Washington, DC, on August 9, 2022. (Photo by Stefani Reynolds / AFP) (Photo by STEFANI REYNOLDS/AFP via Getty Images)

Ryuk ransomware operator extradited to US, faces five years in federal prison

Karen Vardanyan and his co-conspirators allegedly deployed ransomware on hundreds of machines in 2019 and 2020, extorting more than $15 million from victims at the time.

2 days ago By Matt Kapko

SonicWall headquarters — SonicWall’s headquarters in Milpitas, California. (Getty Images)

SonicWall customers hit by fresh, ongoing attacks targeting fully patched SMA 100 devices

Google Threat Intelligence Group said a financially motivated threat group is abusing the outdated remote access VPN devices, underscoring a continued pattern of threats confronting SonicWall customers.

2 days ago By Matt Kapko

Global network overlay on world map. (World map courtesy of NASA)

AsyncRAT seeds family of more than 30 remote access trojans

ESET researchers observed tens of thousands of machines infected with AsyncRAT and its variants over the past year. The open-source malware is a popular tool among cybercriminals.

3 days ago By Matt Kapko

Citrix offices, California — Citrix offices in Santa Clara, California. (Getty Images)

CitrixBleed 2 beckons sweeping alarm as exploits spread across the globe

The number of Citrix customers impacted by CVE-2025-5777 remains unknown, but researchers have already observed more than 11.5 million attack attempts, targeting thousands of sites.

4 days ago By Matt Kapko

Safe Mode

Valence Security’s Yoni Shohet on the growing risk tied to SaaS applications

Yoni Shohet, CEO of Valence Security

Jul 10, 2025 By CyberScoop Staff

The exterior of a Marks & Spencer store photographed on February 18, 2023 in London, England. Four people have been arrested in connection with the cyberattacks on the UK retailer. (Getty Images)

UK arrests four for cyberattacks on major British retailers

The U.K.’s National Crime Agency claims the four were involved in attacks on Marks & Spencer. The cybersecurity industry attributed those attacks to Scattered Spider.

Jul 10, 2025 By Greg Otto

Microsoft Patch Tuesday addresses 130 vulnerabilities, none actively exploited

Researchers are especially concerned about a high-severity defect in SQL Server and a critical vulnerability in SPNEGO, a foundational protocol.

Jul 8, 2025 By Matt Kapko

China and Italy, two flags waving against blue sky. 3d image. Aleksandra Aleshchenko, iStock/Getty Images Plus

Italian authorities arrest Chinese man over Microsoft Exchange Server hack, targeting of COVID-19 researchers

The arrest came at the request of the United States, which hailed the development as a sign that patience in pursuing cybercriminals in court is rewarded.

Jul 8, 2025 By Tim Starks

The Treasury Building in Washington, D.C.; Khaichuin Sim, Getty Images

Treasury slaps sanctions on people, companies tied to North Korean IT worker schemes

A North Korean man was the focus of Tuesday’s announcement, which also included a Russian man, his companies and North Korean firms.

Jul 8, 2025 By Tim Starks