Qilin’s “Korean Leaks” Campaign: How One Compromised MSP Just Fucked 28 Financial Firms

December 3, 2025December 3, 2025 ~ larshilse ~ Leave a comment

Twenty-eight South Korean financial firms just got ransomed through a single compromised MSP. One breach. One vendor. Twenty-eight victims. Qilin ransomware gang demonstrated that your trusted IT provider might be the weakest link in your entire security chain—and possibly working with North Korean state hackers because this timeline couldn't get more fucked. Read the full breakdown of how supply chain compromise is now the highest-ROI attack vector in cybercrime, and why your MSP access is probably your biggest vulnerability right now.

OnSolve CodeRED Gets Ransomed—Emergency Alert Systems Held Hostage by INC Ransom

November 28, 2025November 28, 2025 ~ larshilse ~ Leave a comment

OnSolve's CodeRED emergency alert system just got ransomed. Emergency agencies across the US suddenly couldn't contact residents during emergencies. The INC Ransom gang breached the system, stole customer data including plain-text passwords, and when they didn't get paid, leaked everything online. Crisis24's response? Rebuild from an eight-month-old backup. This is what happens when critical infrastructure treats security as optional.