CYFIRMA Research- Tracking Ransomware: September 2025

07/10/2025 4 min

Listen "CYFIRMA Research- Tracking Ransomware: September 2025"

Episode Synopsis

CYFIRMA’s Sept 2025 Ransomware Report highlights major evolutions across the ransomware landscape. Akira advanced by bypassing MFA on SonicWall VPNs through OTP seed theft, signalling a move beyond patchable flaws. MalTerminal broke new ground with AI-powered, runtime-generated ransomware payloads, while Scattered Spider reemerged to target financial workflows via AI-driven vishing and VMware ESXi exploits. CountLoader reinforced Russia’s ecosystem with modular, multi-language loaders distributing Cobalt Strike, AdaptixC2, and PureHVNC. HybridPetya escalated the threat to firmware-level extortion, exploiting Secure Boot (CVE-2024-7344) and encrypting the MFT at pre-boot for near-irrecoverable persistence.Link to the Research Report: https://www.cyfirma.com/research/tracking-ransomware-september-2025/#CyberSecurity #Ransomware #ThreatIntel #ETLM #CYFIRMA #Akira #MalTerminal #ScatteredSpider #CountLoader #HybridPetya #AIThreats #CYFIRMAresearch #ExternalThreatLandscapeManagement #ETLMhttps://www.cyfirma.com/

More episodes of the podcast CYFIRMA Research

CYFIRMA Research- APT36: Multi-Stage LNK Malware Campaign Targeting Indian Government Entities 06/01/2026

CYFIRMA Research- PLAUSIBLE DENIABILITY IN CYBERSPACE: THE STRATEGIC USE OF HACKTIVIST PROXIES 31/12/2025

CYFIRMA Research- APT36 LNK-Based Malware Campaign Leveraging MSI Payload Delivery 29/12/2025

CYFIRMA Research- Quishing Campaigns: Advanced QR-Code Phishing Evaluation and Insights 26/12/2025

CYFIRMA Research- NexusRoute: Attempting to Disrupt an Indian Government Ministry 24/12/2025

CYFIRMA Research- SeedSnatcher: Dissecting an Android Malware Targeting Multiple Crypto Wallet Mnemonic Phrases 18/12/2025

CYFIRMA Research- RTO Challan Fraud A Technical Report on APK-Based Financial and Identity Theft 16/12/2025

CYFIRMA Research- Tracking Ransomware – November 2025 12/12/2025

CYFIRMA Research- APT36 Python Based ELF Malware Targeting Indian Government Entities 11/12/2025

CYFIRMA Research: North Korean Cyber Crime as a Statecraft Tool 09/12/2025

Ver todos los episodios

ZARZA We are Zarza, the prestigious firm behind major projects in information technology.

CYFIRMA Research- Tracking Ransomware: September 2025

Listen "CYFIRMA Research- Tracking Ransomware: September 2025"

Episode Synopsis

More episodes of the podcast CYFIRMA Research

Preparing for a Hacker Threat

Increase the rate of email delivery

Bandwidth: Broadband or Narrowband?

Personnel recruitment via Web

Deep web or Invisible Internet

Subdomains, a glance with the experts!

Free Internet, a prediction in Nostradamus style

Educational Technology: From traditional to digital

Localhost, there’s no place like 127.0.0.1

Googling with breathtaking tricks you ignore

Gray Hat Hacking, those with ambiguous ethics…

Internet Predators on the prowl

Dot COM: The Internet’s dominant TLD