Now there's a ransomware that can't give your files back even if you pay

A true lose/lose situation.
CyberGuy

SoundCloud data breach exposes 29.8 million user accounts

Nearly 30 million SoundCloud users exposed in a major data breach. See what data was taken, who did it and what to do now.
SecurityWeek

Concerns Raised Over CISA’s Silent Ransomware Updates in KEV Catalog

The practical utility of CISA's KEV ransomware updates for defenders has been questioned because they are made without public notification.

Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX ...
The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.