The Register: It’s 2025 and almost half of you are still paying ransomware operators

Jun 30, 2025

—

Source URL: https://www.theregister.com/2025/06/30/information_security_in_brief/
Source: The Register
Title: It’s 2025 and almost half of you are still paying ransomware operators

Feedly Summary: PLUS: Crooks target hardware crypto wallets; Bad flaws in Brother printers; ,O365 allows takeover-free phishing; and more
Infosec in Brief Despite warnings not to pay ransomware operators, almost half of those infected by the malware send cash to the crooks who planted it, according to infosec software slinger Sophos.…

AI Summary and Description: Yes

Summary: The text outlines several security concerns related to hardware cryptocurrency wallets, vulnerabilities in Brother printers, and issues surrounding phishing in O365, which are critical considerations for professionals in cybersecurity.

Detailed Description: The provided text highlights emerging threats in the realm of information security, specifically focused on hardware vulnerabilities and phishing attacks. Here are the key points:

– **Targeted Hardware Crypto Wallets**:
– Criminals are increasingly targeting hardware crypto wallets, which are supposed to provide secure storage for cryptocurrencies.
– Security professionals should assess and enhance the security measures around these devices to prevent unauthorized access and theft.

– **Vulnerabilities in Brother Printers**:
– Reports indicate significant security flaws in Brother printers that could be exploited by attackers.
– Organizations using these printers must ensure they implement security patches and regularly review their device configurations to mitigate risks.

– **O365 Phishing Risks**:
– There is a mention of O365 allowing takeover-free phishing, indicating that there may be vulnerabilities in Microsoft’s application that can be exploited.
– Companies utilizing O365 must remain vigilant by deploying phishing detection measures and training employees to recognize these threats.

– **Ransomware Payment Trends**:
– A concerning statistic reveals that almost half of the victims of ransomware infections continue to pay the attackers, despite warnings against this practice.
– This highlights the need for businesses to enhance their incident response strategies and provide training on avoiding engagement with ransomware operators.

Overall, this text is highly relevant to security professionals as it underscores current vulnerabilities and behavioral trends in the cybersecurity landscape, emphasizing the importance of proactive security measures and continuous education.

2 2025 3 5 a access Act AI and app Application as ated attack attackers attacks AWS Behavior Bi Brother printers business by C cash CERN CI co companies concerns Configuration configurations continuous core critical Crypto crypto wallet crypto wallets cryptocurrency cryptocurrency wallets Current cyber cybersecurit Cybersecurity cybersecurity landscape D de detection detection measures device e education emerging emerging threats end engagement event exp exploit flaws focused for free g GIS gs H hardware hardware vulnerabilities high Highlight HR http HTTPS in incident incident response incident response strategies information information security infosec inter io issue ite k Key l land law led Li lm low M malware measures Micro Microsoft N no o o3 O365 of on Operator organization organizations oS other out over Patch patches phi phishing phishing attack Phishing Attacks phishing detection phishing risks point pre printer pro proactive proactive security proactive security measures professionals ps R rag ransom ransomware rate RCE real report response response strategies review Risk risks Ro RoT s sec secure secure storage security security concerns Security Flaw security flaws security landscape security measure security measures security patch security patches security professionals side Sig software Sophos source specific SSE storage strategies T takeover targeted ted text the theft threat threats to Tor TP training trends unauthorized access under up US use uth V victims vulnerabilities Ware Wi x z