Q4 of 2025 was marked by the latest large-scale data theft campaign by the CL0P ransomware gang, this time exploiting a zero-day vulnerability in Oracle E-Business Suite (EBS). The campaign came from a playbook CL0P pioneered nearly five years ago. The strategy involves: purchase a zero-day exploit of a widely used enterprise file transfer or data storage appliance, compromise as many instances as possible before detection, exfiltrate as much data as possible from as many downstream customers as possible, and finally monetize at scale the attack through extortion of each unique downstream party. Read more

Nitrogen ransomware was derived from the previously leaked Conti 2 builder code and is similar to other Conti-based ransomware, but a coding mistake in its ESXi malware causes it to encrypt files with the wrong public key, irreversibly corrupting them. In practice, this means even the threat actor can’t decrypt affected files. If victims don’t have viable backups, they have no way to recover ESXi-encrypted servers. Paying a ransom won’t help in these cases, because any decryption key or tool the attacker provides won’t work. Read more

Security evolves alongside what we build. When we built networks, we got network firewalls. When we built web applications, we added web application firewalls (WAFs), API gateways, and application-layer controls. Now that teams are shipping products that can reason over unstructured text, retrieve private data, and trigger actions through tools, security is shifting again. Read more

Ransomware isn’t new, but the way attackers gain access keeps evolving. In 2025, human‑targeted tactics and cloud‑based compromise dominate the threat landscape. Phishing emails are only the beginning; today’s campaigns extend through chat platforms, voice calls, and even trusted SaaS integrations. The goal is simple: find one person, one credential, or one misconfigured service that opens the door. Read more

When we talk about High Availability in virtualization, we’re talking about one thing, keeping workloads running no matter what happens underneath. Proxmox High Availability (HA) automatically restarts virtual machines or containers on healthy nodes if a host fails, ensuring minimal downtime and continuous service availability. Read more

Modern data protection must be compliant, secure and resilient; not only to pass audits, but to recover with confidence. For most organizations, managing compliance, risk, and security can be a time-consuming, and complex challenge. This is because businesses are impacted every day by internal and external factors that affect growth, strategy and survival. Whether it’s a new regulation to adhere to, a new advancement in technology or even the scare of a cyberattack, it’s critical to have a modern IT strategy that continues to evolve with business and includes its people and processes.

Compliance, governance, and risk are all factors organizations need to address, whether big or small. Think of compliance as the ongoing governance and management of risk. Making sure ... Read more

At Veeam, we don’t just build data protection solutions — we build confidence. Every product we deliver is shaped by authentic customer feedback, tested against real-world challenges, and designed to help organizations stay resilient in an environment where downtime isn’t an option. Read more

Over the years, enterprise data resilience has experienced significant shifts, ushering in a new era of accountability. Cybersecurity has entered a period of heightened executive scrutiny; with mandatory breach disclosures, increased regulatory oversight, and threat velocity driven by AI and automation, resilience has moved past technical objectives to become a top boardroom priority. Public organizations, consequently, are obligated to demonstrate their ability to detect incidents, contain them from spreading, and potentially recover any impacted data, all while maintaining transparent documentation and governance or face hefty financial penalties, reputational damages, or legal consequences. Read more

If you serve on a board today, you already understand that cybersecurity and data resilience matter. The harder question is whether your organization can perform under pressure. Data resilience is no longer about having security alone; it is about whether systems and people can act when it counts, regardless of if they are going through a cyberattack, a vendor outage, or an internal failure. Rather, resilience is measured not by how well systems are defended, but by how effectively they bounce back. It's the difference between downtime and continuity, confusion and coordination, risk and readiness. That is where the Data Resilience Maturity Model (DRMM) helps boards ensure they are governance‑ready. The DRMM turns resilience into a measurable capability, connecting strategy, ... Read more

“If you pay a ransom, will you get your files back?" It’s a ubiquitous question that the majority of security blogs and vendor surveys fail to answer correctly. A quick search online will yield a dozen contradictory statistics. Why is this such a difficult question to answer? The truth is outcome statistics vary dramatically from case to case, and broad averages are useless for making real time, critical decisions. Read more