Today’s roundup
Microsoft releases emergency OOB update to fix Outlook freezes
Sandworm hackers linked to failed wiper attack on Poland’s energy systems
Konni hackers target blockchain engineers with AI-built malware
Osiris ransomware emerges, leveraging BYOVD technique to kill security tools
Summary
Microsoft has released an emergency out-of-band (OOB) update for Windows 10, Windows 11, and Windows Server. The update addresses a critical issue preventing Microsoft Outlook classic from opening when PST files are stored in cloud storage.
Russia's state-sponsored hacking group, Sandworm, has been implicated in a failed cyberattack against Poland's power grid in late December 2025. During the incident, the group attempted to deploy a newly identified destructive data-wiping malware, dubbed DynoWiper.
The North Korean advanced persistent threat (APT) group Konni, also known as Opal Sleet or TA406, is now utilizing AI-generated PowerShell malware. These sophisticated attacks specifically target developers and engineers within the blockchain sector.
Symantec and Carbon Black researchers have identified a new ransomware strain named Osiris, which was used in a November 2025 attack against a major Southeast Asian food service franchise operator. Osiris employs the Bring-Your-Own-Vulnerable-Driver (BYOVD) technique, leveraging the POORTRY driver to disable security software, and shows potential links to the INC ransomware actors.
Want to dig deeper?
Cyber Groups
Malware Families