The Cactus ransomware gang claims to have stolen 1.5 terabytes of data from Schneider Electric, an OT manufacturer, and posted a sample online as proof. The stolen data reportedly includes US passports and non-disclosure agreements. Shawn Wiora, CEO of Token, warns this could result in a record ransomware payment. He notes that such losses are often due to reliance on outdated MFA technology to counter AI-driven cyberattacks. Schneider Electric confirmed that data from its Sustainability Business Division was compromised during the attack.

Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
Cybersecurity researchers have revealed details about Outlaw, an “auto-propagating” cryptocurrency mining botnet that targets SSH servers with weak credentials. The Romanian-origin malware performs SSH brute-force