Akira Ransomware, MFA Bypass & AI Security – 09/28/2025

Today’s intelligence digest highlights a critical threat from the Akira ransomware group, which is actively bypassing MFA on SonicWall VPN devices. This development poses a significant risk to organizations relying on multi-factor authentication for network security. We will also cover a major infrastructure incident involving a datacenter fire and discuss the evolving role of artificial intelligence in transforming modern cyberattacks. Stay informed on these key security developments.

Critical Security Alert

• Akira ransomware breaching MFA-protected SonicWall VPN accounts: The Akira ransomware group is actively exploiting SonicWall SSL VPNs, successfully bypassing multi-factor authentication, potentially through the use of stolen OTP seeds. Read more

Threat Intelligence

• Akira ransomware breaching MFA-protected SonicWall VPN accounts: The Akira ransomware group is actively exploiting SonicWall SSL VPNs, successfully bypassing multi-factor authentication, potentially through the use of stolen OTP seeds. Read more

Security Breaches & Incidents

• Datacenter fire takes 647 South Korean government services offline: A significant fire at a South Korean datacenter has caused a massive outage, knocking hundreds of government digital services offline and highlighting physical security risks. Read more

Security Tools & Best Practices

• Privacy Badger is a free browser extension made by EFF to stop spying: The Electronic Frontier Foundation (EFF) offers Privacy Badger, a free browser extension designed to automatically block invisible trackers and prevent third-party ad spying. Read more

Emerging Security Technologies

• Wiz chief technologist Ami Luttwak on how AI is transforming cyberattacks: Wiz CTO Ami Luttwak provides insight into how artificial intelligence is being leveraged by threat actors to create more sophisticated cyberattacks and what it means for defenders. Read more