InfoSecBulletin Cybersecurity for mankind
CISA, FBI, Europol’s EC3, and NCSC-NL released a joint Cybersecurity Advisory called #StopRansomware: Akira Ransomware. It shares known tactics, techniques, and procedures of Akira ransomware, as well as indicators of compromise from FBI investigations up until February 2024.
Akira threat actors started with Windows systems but shifted to Linux for VMware ESXi virtual machines. They began using Megazord and Akira (written in C++) in August 2023. Akira_v2, which is also Rust-based, was introduced as well. This ransomware has affected many businesses and infrastructure entities in North America, Europe, and Australia, resulting in around $42 million (USD) in ransom payments.
400+ SAP NetWeaver Devices Vulnerable to 0-Day Attacks
Blind_Virus, DU_Featherless_Bipeds and Hidden investigations top qualifier for UAP CTF
CVE-2025-43859
Request Smuggling Vulnerability in Python’s h11 HTTP Library
NVIDIA Releases Security Update For GPU Driver Vulnerabilities
‘SessionShark’ ToolKit Bypasses Microsoft Office 365 MFA
159 CVEs Exploited in Q1 2025 : 28.3% Within 24 Hours of Disclosure
NVIDIA NeMo Framework Vuln Allow Attackers RCE
Cisco Issued Urgent Security Advisories For Multiple Products
SonicWall patched SSLVPN Vuln Allowing Firewall Crashing
GitLab Releases Security Update For Multiple Vulns
CISA and its partners urge critical infrastructure organizations to check and apply the solutions in the joint CSA. This will help decrease the chances and effects of Akira and other ransomware attacks. To learn more, visit CISA’s #StopRansomware webpage and the updated #StopRansomware Guide.
