News

#StopRansomware Advisory: Interlock Ransomware Targets Organizations

Luciano Ferrari

30 Dec 2025 — 2 min read

Tuesday, December 30, 2025

Top 5 Cybersecurity Stories You Should Know

#StopRansomware Advisory: Interlock Ransomware Targets Organizations — tl;dr: The CISA, FBI, and other agencies have issued a joint advisory on Interlock ransomware, first observed in September 2024, targeting businesses and critical infrastructure in North America and Europe. This ransomware employs a double extortion model, encrypting data after exfiltration and using social engineering techniques for initial access. Organizations are urged to implement DNS filtering, patch vulnerabilities, segment networks, and enforce multifactor authentication to mitigate risks. The advisory includes indicators of compromise and tactics used by the threat actors to help defenders strengthen their cybersecurity posture.
↪ https://www.cisa.gov/news-events/cybersecurity-advisories/aa25-203a
CISA Issues Guidance to Strengthen Communications Infrastructure Against Cyber Threats — tl;dr: The Cybersecurity and Infrastructure Security Agency (CISA) and other agencies have released guidance aimed at enhancing the security and visibility of communications infrastructure amid ongoing cyber espionage threats from China-affiliated actors. The recommendations focus on improving network monitoring, detecting unauthorized changes, and hardening device configurations. Organizations, particularly in telecommunications and critical infrastructure, are urged to adopt these best practices to mitigate vulnerabilities and reduce the risk of exploitation. Key actions include implementing robust logging, monitoring user activity, and utilizing out-of-band management networks.
↪ https://www.cisa.gov/resources-tools/resources/enhanced-visibility-and-hardening-guidance-communications-infrastructure
CISA Warns of Ongoing Cyber Threats to Cisco ASA and Firepower Devices — tl;dr: The Cybersecurity and Infrastructure Security Agency (CISA) has identified ongoing cyber threats targeting Cisco ASA and Firepower devices. These vulnerabilities can be exploited by sophisticated cyber actors, posing risks to essential services and national security. Organizations using these devices are urged to review CISA's alerts and advisories, implement recommended security measures, and stay informed about the latest threats. By proactively managing vulnerabilities and enhancing their cybersecurity posture, entities can better protect themselves against potential attacks and ensure the integrity of their networks.
↪ https://www.cisa.gov/topics/cyber-threats-and-advisories
DHS Enhances Cybersecurity Resilience and Election Security Efforts — tl;dr: The Department of Homeland Security (DHS) is strengthening cybersecurity resilience across the nation through its Cybersecurity and Infrastructure Security Agency (CISA). CISA leads federal cybersecurity efforts and collaborates with state, local, and private sectors to protect critical infrastructure. Additionally, DHS prioritizes election security, ensuring the integrity of the electoral process against emerging threats. The Cyber Safety Review Board (CSRB) provides actionable recommendations for improving software security, while agencies like TSA and USCG enhance cybersecurity measures in transportation and maritime domains. Stakeholders are encouraged to engage with CISA for resources and guidance.
↪ https://www.dhs.gov/topics/cybersecurity
CISA and Partners Enhance Cybersecurity Training for Energy Sector — tl;dr: CISA, DHS Science and Technology Directorate, and Idaho National Laboratory hosted a cybersecurity training exercise with Louisiana State University and energy industry partners to strengthen incident response capabilities against cyberattacks on operational technology (OT) and information technology (IT). The event took place at CISA’s Control Environment Laboratory in Idaho, where participants engaged in simulated high-impact cyberattacks. This initiative aims to bolster the cybersecurity posture of critical infrastructure, particularly in the energy sector, by developing technical talent and enhancing collaboration among stakeholders. Energy sector professionals are encouraged to leverage such training opportunities to improve their cyber defense skills.
↪ https://www.cisa.gov/news-events/news/cisa-dhs-st-inl-lsu-help-energy-industry-partners-strengthen-incident-response-and-ot-cybersecurity