Acronis Blog
Authors
Acronis Threat Research Unit
Acronis Threat Research Unit
Acronis Threat Research Unit

Latest stories from Acronis Threat Research Unit

March 11, 2025  — 4 min read
TRU Security
Acronis
March 11, 2025  — 4 min read
MSP cybersecurity news digest, March 4, 2025
Cracked software being used to distribute Lumma and ACR Stealer in new malware campaign, EU health care organizations targeted by new NailaoLocker ransomware, and more. Here are the latest threats to MSP security.
March 10, 2025  — 3 min read
TRU Security
Acronis
March 10, 2025  — 3 min read
Acronis Cyberthreats Update, March 2025
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by the Acronis Threat Research Unit.
March 04, 2025  — 3 min read
TRU Security
Acronis
March 04, 2025  — 3 min read
MSP cybersecurity news digest, February 25, 2025
Private equity and venture capital firm Insight Partners has its systems breached, macOS users targeted via fake browser update prompts by new FrigidStealer malware, and more. Here are the latest threats to MSP security.
February 26, 2025  — 3 min read
TRU Security
Acronis
February 26, 2025  — 3 min read
Acronis Cyberthreats Update, February 2025
The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by the Acronis Threat Research Unit.
February 26, 2025  — 3 min read
TRU Security
Acronis
February 26, 2025  — 3 min read
MSP cybersecurity news digest, February 18, 2025
Updates for 55 vulnerabilities, including four zero-day flaws, in Microsoft’s February 2025 Patch Tuesday, FERRET malware deployed by North Korean hackers on macOS devices using fake job interviews, and more. Here are the latest threats to MSP security.
February 19, 2025  — 3 min read
TRU Security
Acronis
February 19, 2025  — 3 min read
MSP cybersecurity news digest, February 12, 2025
India’s Tata Technologies suspends some IT services after ransomware attack, fake LinkedIn job offers used by North Korean hackers to target businesses, and more. Here are the latest threats to MSP security.
February 13, 2025  — 8 min read
TRU Security
Acronis
February 13, 2025  — 8 min read
Advancements in delivery: Scripting with Nietzsche
We’ve recently come across a complex delivery chain utilizing multiple script languages designed to deploy high-profile malware families such as the open-source-made DCRat or the Rhadamanthys infostealer.
February 12, 2025  — 3 min read
TRU Security
Acronis
February 12, 2025  — 3 min read
MSP cybersecurity news digest, February 4, 2025
macOS users targeted in new cyberattacks by “Fake DeepSeek Campaign” to spread Poseidon Stealer malware, "Script kiddies" duped by attackers with fake malware creation tool, and more. Here are the latest threats to MSP security.
January 29, 2025  — 3 min read
TRU Security
Acronis
January 29, 2025  — 3 min read
MSP cybersecurity news digest, January 29, 2025
15,000+ FortiGate firewall configurations leaked by Belsen Group, Lumma Stealer malware spread through fake CAPTCHA campaign targeting numerous industries, and more. Here are the latest threats to MSP security.
January 22, 2025  — 3 min read
TRU Security
Acronis
January 22, 2025  — 3 min read
MSP cybersecurity news digest, January 21, 2025
Black Basta admits responsibility in breaching Mortgage Investors Group’s customer data, Italian retailer Conad has HR and customer data stolen by Lynx ransomware gang, and more. Here are the latest threats to MSP security.
January 21, 2025  — 4 min read
TRU Security
Acronis
January 21, 2025  — 4 min read
MSP cybersecurity news digest, January 15, 2025
Newly discovered phishing campaign delivers XMRig cryptominer through fake CrowdStrike job offer emails, STIIIZY cannabis brand discloses theft of customers’ personal and purchase data, and more. Here are the latest threats to MSP security.
January 09, 2025  — 12 min read
TRU Security
Acronis
January 09, 2025  — 12 min read
SharpRhino: An old, new threat
SharpRhino is delivered as legitimate software and grants remote access to the victim's machine. Read our full analysis to see how attackers use it to propagate other malware.