Ransomware groups claimed the highest number of attacks in May, but experts believe the claims might be exaggerated.
Most prolific group, Source: The record
Last month, ransomware gangs posted 450 victims to their extortion sites, which is an increase compared to the 328 victims in April. The highest number of attacks ever recorded was 484, posted by groups in July 2023.
Apple has issued an urgent security advisory about 3 critical zero-day vulnerabilities—CVE-2025-24200, CVE-2025-24201, and CVE-2025-24085—that are being actively exploited in...
Canon has announced a critical security vulnerability, CVE-2025-1268, in printer drivers for its production printers, multifunction printers, and laser printers....
Cybersecurity researcher Jeremiah Fowler recently revealed a sensitive data exposure involving the Australian fintech company Vroom by YouX, previously known...
Over a third of last month’s attacks were linked to LockBit, a group that had its website seized by law enforcement in February. Some leaders of the group claim that the takedown did not completely stop their activities, and LockBit is still operating.
LockBit has claimed to have attacked many organizations lately. However, cybersecurity experts doubt these claims and believe it’s a public relations strategy to reassure partners that their operations are running smoothly.
Reported ransomware attacks on state and local government, Source: The record
Allan Liska, a ransomware expert from Recorded Future, tracks and analyzes data from extortion sites, government agencies, news reports, and hacking forums. Many attacks listed on the site seem to be duplicates or old attacks that were never posted on the extortion site to begin with.
Reported ransomware attacks on healthcare providers, Source: the record
“The problem is that it is often difficult to determine what is real and what is made up as a way for LockBit to save face… Criminals are, to put it gently, unreliable narrators when it comes to victim reporting.”
InfoSecBulletin Cybersecurity for mankind
