T.H.E. Journal | Why Web Security Has Become Core Infrastructure for K–12
This article was originally published in T.H.E. Journal on 02/11/26 by Charlie Sander. Learning is increasingly cloud-based and off-campus...
Ransomware
Ransomware Readiness is the Difference Between A Bad Day at Work and No More Workplace
Ransomware is no longer an exotic cybercrime that happens to someone else. It is now a routine feature of...
Please Don’t Feed the Scattered Lapsus ShinyHunters
A prolific data ransom gang that calls itself Scattered Lapsus ShinyHunters (SLSH) has a distinctive playbook when it seeks to...
EdTech Magazine | What Minimum Viable Cybersecurity Looks Like for K–12 Districts
This article was originally published in EdTech Magazine on 02/11/26 by Didi Gluck. As ransomware and phishing attacks grow...
Polish cybercrime Police arrest man linked to Phobos ransomware operation
Polish cybercrime Police arrest man linked to Phobos ransomware operation Pierluigi Paganini February 17, 2026 Officers from Poland’s Central Bureau...
Ransomware Groups Claimed 2,000 Attacks in Just Three Months
Image: MargJohnsonVA/Envato Ransomware may no longer dominate daily headlines, but it has hardly retreated. While public attention shifted to the...
Naming and shaming: How ransomware groups tighten the screws on victims
Ransomware When corporate data is exposed on a dedicated leak site, the consequences linger long after the attack fades from...
Reynolds ransomware uses BYOVD to disable security before encryption
Reynolds ransomware uses BYOVD to disable security before encryption Pierluigi Paganini February 11, 2026 Researchers discovered Reynolds ransomware, which uses...
Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools
Cybersecurity researchers have disclosed details of an emergent ransomware family dubbed Reynolds that comes embedded with a built-in bring your...
From Ransomware to Residency: Inside the Rise of the Digital Parasite
Are ransomware and encryption still the defining signals of modern cyberattacks, or has the industry been too fixated on noise...
Senegal shuts National ID office after ransomware attack
Senegal shuts National ID office after ransomware attack Pierluigi Paganini February 10, 2026 Senegal closed its national ID card office...
Warlock Ransomware Breaches SmarterTools Through Unpatched SmarterMail Server
SmarterTools confirmed last week that the Warlock (aka Storm-2603) ransomware gang breached its network by exploiting an unpatched SmarterMail instance....
Italian university La Sapienza still offline to mitigate recent cyber attack
Italian university La Sapienza still offline to mitigate recent cyber attack Pierluigi Paganini February 07, 2026 Rome’s La Sapienza University...
CVE-2025-22225 in VMware ESXi now used in active ransomware attacks
CVE-2025-22225 in VMware ESXi now used in active ransomware attacks Pierluigi Paganini February 04, 2026 Ransomware groups now exploit VMware...
Malicious use of virtual machine infrastructure
In late 2025, SophosLabs analysts investigated several WantToCry remote ransomware incidents. In each case, the attackers used virtual machines with...
