Risky Bulletin Risky Bulletin: US indicts two rogue cybersecurity employees for ransomware attacks
8 snips
Nov 5, 2025 The US indicts two cybersecurity employees for deploying ransomware, raising eyebrows in the tech community. Meanwhile, hackers target South Korean massage parlors, threatening business owners to extort customer data. In another twist, a crypto firm loses a staggering $128 million to attackers. Organized crime teams up with hackers to hijack freight shipments, creating a new level of threat in the logistics industry. Finally, a wave of arrests across Europe tackles massive online investment scams, highlighting the ongoing battle against cybercrime.
AI Snips
Chapters
Transcript
Episode notes
Insider Cybersecurity Threats Can Be Costly
- Two former US cybersecurity employees allegedly used their insider skills to deploy Al1.r ransomware against companies and netted over $1.2 million in ransoms.
- The case highlights how trusted incident responders can become significant internal threats when they turn rogue.
Long-Running Cybercrime Group Member Apprehended
- Yuri Ihorovich Reitsov, aka Mr ICQ, was arrested in Italy and extradited to the US after 15 years of activity with the Jabba Zeus group.
- He is the second member arrested while the group's leader serves concurrent nine-year sentences in the US.
Extortion Scheme Targeted Massage Parlor Customers
- A group in South Korea tricked massage parlour owners into installing malicious apps to harvest customer data and then extorted patrons with threats to release videos.
- Over three years they reportedly collected nearly $1.2 million from 62 victims.