Security news aggregator

Latest coverage for Akira

Akira is a ransomware family that can disrupt systems, with coverage of reported incidents, technical analysis, disruption efforts, and defensive guidance.

14 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Akira is a ransomware family known for encrypting victims’ files and demanding payment for decryption keys. It typically targets Windows systems, using strong encryption algorithms to lock data and hinder recovery without the attacker’s cooperation. Akira ransomware often appends specific file extensions to encrypted files and may leave ransom notes with instructions for payment.

From a security perspective, Akira poses risks including data loss and operational disruption. Defenders should focus on maintaining up-to-date backups, applying timely patches to reduce vulnerabilities that could enable initial access, and monitoring for indicators of compromise such as unusual file encryption activity or ransom note creation. Network segmentation and endpoint detection can help contain infections and support incident response efforts against Akira ransomware attacks.

Volume over time

Weekly headline count for the current query.

Showing 14 most recent headlines Filtered view
Bank Info Security 7 months, 3 weeks ago

Akira's SonicWall Hacks Are Taking Down Large Enterprises

Businesses That Inherit SSL VPNs Through M&A Activity Falling Victim, Warn ExpertsMultiple large enterprises that inherited SonicWall SSL VPN devices when they acquired a smaller entity have fallen victim to the Akira ransomware group, security researchers warn. Investigations of multiple intrusions found they began when attackers used "unmonitored and unrotated" credentials.

Bank Info Security 7 months, 3 weeks ago

ISMG Editors: Inside the Staffing Crisis Crippling CISA

Also: Akira Ransomware Targets Healthcare, AI's Sycophancy Becomes a Security RiskIn this week's ISMG Editors' Panel, four editors discussed the staffing crisis confronting America's cyber defense agency, the escalating Akira ransomware threat putting more pressure on healthcare, and growing concerns over whether AI models used in security can actually be trusted.

Bank Info Security 9 months, 1 week ago

SonicWall Warns Cloud Backup Users of Security Risk

Akira Ransomware Hackers Targeting SonicWall DevicesFirewall maker SonicWall said Friday all customers who used its cloud backup services are at increased "risk of targeted attacks" following a recent cyberattack. The California firm in September disclosed that unidentified hackers launched brute-force attacks against servers storing backup files.

Bank Info Security 9 months, 1 week ago

SonicWall Warns Cloud Backup Users of Security Risk

Akira Ransomware Hackers Targeting SonicWall DevicesFirewall maker SonicWall said Friday all customers who used its cloud backup services are at increased "risk of targeted attacks" following a recent cyberattack. The California firm in September disclosed that unidentified hackers launched brute-force attacks against servers storing backup files.

Bank Info Security 9 months, 2 weeks ago

Gone in 60 Minutes: Akira Defeats MFA for SonicWall SSL VPNs

'Opportunistic, Mass Exploitation' Campaign Surging, Say Cybersecurity ResearchersAttackers wielding Akira ransomware appear to be engaged in an "opportunistic, mass exploitation" of SonicWall SSL VPN servers, even when they're using the latest firmware and configured to require multifactor authentication one-time passwords, warn cybersecurity researchers.

Bank Info Security 10 months ago

Breach Roundup: Vidar Strikes Back

Also, Akira Ransomware Resumes Attacks Via SonicWall FlawsThis week, the Vidar infostealer, BlackDB admin, Akira ransomware hackers and Patch Tuesday. A warning for British bankers, a Cursor flaw, a Brazilian dating app shut down. KazMunayGas said it wasn't hacked. Wealthsimple and Hello Gym data breaches. A macOS backdoor hid in plain sight for years.

Bank Info Security 11 months, 1 week ago

SonicWall Probes Potential Zero-Day After Ransomware Hits

Akira Ransomware Exploited MFA-Protected SonicWall SSL VPNs, Say ResearchersSonicWall said it is probing a surge in attacks against its Gen 7 firewalls, running various firmware versions, which have SSL VPN enabled. Researchers said attackers may have been exploiting a zero-day vulnerability and that multiple victims have been infected with Akira ransomware.

Bank Info Security 1 year, 2 months ago

Breach Roundup: Surge in Edge Device Zero-Day Exploits

Also, Baltimore Public Schools Suffer Data Breach, Disney Menu Hacker SentencedThis week, zero-day exploits surged, accused Nefilim hacker extradited, Baltimore schools breach, CISA lists Broadcom Brocade, Commvault flaws, a fake WooCommerce patch, Akira hit Hitachi Vantara, ex-Disney worker sentenced and a Darcula phishing kit upgrade. FBI published 42,000 phishing domains.

Bank Info Security 1 year, 4 months ago

Ransomware Attacks Appear to Keep Surging

RansomHub, Play, Akira and Clop Among the Groups Claiming the Most VictimsRansomware operations have collectively claimed what amounts to a surge in new victims. Researchers trace much of this activity to RansomHub, Play and Akira, as well as Clop, which continues to drip-feed details about its attack on users of Cleo Communications' managed file-transfer software.

Bank Info Security 1 year, 6 months ago

Ransomware Leak Sites Suggest Attacks Reached Record High

RansomHub, Play and Akira Appear to Dominate; Numerous Newcomers Join the FrayWhile ransomware groups' data-leak sites regularly lie, if taken at face value, in December 2024 they collectively listed the largest number of victims ever seen in a one-month period, dominated by RansomHub, Play and Akira operations, plus a bevy of newcomers, researchers report.

Bank Info Security 2 years, 4 months ago

Ransomware Talent Surges to Akira After LockBit's Demise

US Healthcare Entities Are Firmly in Akira Ransomware Group's Sights, Expert WarnsRansomware groups may come and go, but often it's only in name, as the individuals involved will move on to power whatever group remains a going concern. Cue a reported flow of top talent from LockBit, which was recently disrupted by law enforcement, to Akira, which is apparently alive and well.

Bank Info Security 2 years, 5 months ago

Feds Warn Health Sector About Akira Again, Amid New Attacks

Recent Victims Include Pennsylvania Emergency Dispatch SystemU.S. federal authorities are again warning the healthcare sector about threats from the Akira ransomware group. The latest alert comes on the heels of several recent attacks by the gang, including one last month on Bucks County, Pennsylvania, which affected an IT system used by emergency responders.

Bank Info Security 2 years, 5 months ago

Ransomware Hit on Tietoevry Causes IT Outages Across Sweden

Finnish IT Services Previews Days or Weeks of Disruption, Ties Attack to AkiraAn Akira ransomware attack that hit a data center run by Finnish IT software and services firm Tietoevry has led to widespread outages across Sweden. Healthcare, local governments, retail outlets and the country's largest cinema chain are among the organizations experiencing ongoing disruptions.

Bank Info Security 2 years, 6 months ago

Ransomware Trends: Medusa and Akira Rage; Tortilla Disrupted

Crypto-Malware Trackers Report a Surge in Known Ransomware Victims at End of 2023Ransomware-wielding attackers show no signs of stopping, and experts report December 2023 was the second-worst month on record for known victims. Lately, Akira-wielding attackers have been hitting Finland hard, and Medusa has been behind a rising number of attacks.