TRU Security Acronis

The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis Threat Research Unit (TRU) and Acronis sensors. Figures presented here were gathered in September 2025 and reflect threats that Acronis detected, as well as news stories from the public domain.

Major European airports including Heathrow, Brussels, Berlin, and Dublin have reported disruptions in check-in, boarding, and kiosk systems. The outages have been linked to Collins Aerospace’s passenger processing platform MUSE, a system used across many international airports.

Acronis' Threat Research Unit discovered a rare in-the-wild example of a FileFix attack — a new variant of the now infamous ClickFix attack vector.

The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis Threat Research Unit (TRU) and Acronis sensors. Figures presented here were gathered in August 2025 and reflect threats that Acronis detected, as well as news stories from the public domain.

Over the past months, Acronis TRU (Threat Research Unit) has identified multiple active and ongoing campaigns leveraging trojanized versions of ConnectWise ScreenConnect to gain initial access to victim networks and compromise target machines.

Clinical data stolen in cyberattack on dialysis provider DaVita, Chanel, Pandora, Google and Cisco suffer data breaches, and more. Here are the latest threats to MSP security.

Scattered Spider group disrupted, but imitators carry on, Fake OAuth apps and Tycoon phishing kit used to hijack Microsoft 365 accounts, and more. Here are the latest threats to MSP security.

The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis Threat Research Unit (TRU) and Acronis sensors. Figures presented here were gathered in July 2025 and reflect threats that Acronis detected, as well as news stories from the public domain.

Benign-appearing panda images used by new Koske Linux malware to deliver malicious code, Turkish defense firms targeted through Patchwork spear-phishing campaign, and more. Here are the latest threats to MSP security.

Acronis Threat Research Unit (TRU) analyzed recent samples of Akira and Lynx ransomware families to see the latest changes and tweaks implemented by the groups.

SafePay inflicts major ransomware attack on Ingram Micro, Oyster malware loader spread through SEO poisoning campaign to target 8,500+ SMB users, and more. Here are the latest threats to MSP security.

The Acronis Threat Research Unit (TRU) uncovered a new malware campaign involving Leet Stealer, RMC Stealer (a modified version of Leet Stealer) and Sniffer Stealer.

Zurich nonprofit Radix hit by Sarcoma ramsomware group, resulting in theft of 1.3TB of data, Google issues fix for active zero-day vulnerability in Chrome’s V8 JavaScript engine, and more. Here are the latest threats to MSP security.

The Acronis Cyberthreats Update covers current cyberthreat activity and trends, as observed by Acronis Threat Research Unit (TRU) and sensors. Figures presented here were gathered in June of this year and reflect threats that we detected as well as news stories from the public domain.

SafePay ransomware group has quietly and aggressively built momentum in Q1 2025, striking over 200 victims worldwide, including MSPs and SMBs.

ConnectWise ScreenConnect installer exploited by authenticode stuffing technique, attackers breach data of insurance firms Aflac and Erie Insurance, and more. Here are the latest threats to MSP security.

Columbian users targeted through sophisticated Shadow Vector malware campaign, Swiss firm Chain IQ and Australian MSP Vertel hit with separate ransomware Incidents and more. Here are the current threats to MSP security.

Zero-day flaw and 66 vulnerabilities addressed in Microsoft’s June 2025 Patch Tuesday, Malware campaign hijacks Discord vanity invite link system, directing users to malicious servers, and more. Here are the latest threats to MSP security.

The Acronis Threat Research Unit (TRU) identified an ongoing malware campaign named Shadow Vector that is actively targeting users in Colombia through malicious SVG files masquerading as urgent court notifications.

FBI reports 900 organizations in the Americas and Europe hit by Play ransomware since October 2023, Cross-platform remote access trojan, Chaos RAT, has been targeting Windows and Linux systems, and more. Here are the latest threats to MSP security.