The British Library was hit by a ransomware attack on October 28, impacting phone lines, on-site services, and access to digital collections. The library is taking targeted protection measures and conducting digital forensics work, but full recovery could take weeks or months. Services, including the library’s website and digital services from its Business & IP Centre, remain disrupted. It is still unconfirmed whether the attackers stole data.
Sandworm Uses SSH-over-Tor Tunnel for Stealthy Long-Term Persistence
A significant evolution in Sandworm (APT-C-13) tradecraft, revealing the group’s use of SSH-over-Tor tunneling to achieve long-term, covert persistence inside targeted networks. Sandworm, also known
