Risky Bulletin: Microsoft takes down crime SaaS used by ransomware gangs

risky.biz·May 20, 2026

Microsoft has disrupted a malware-signing service utilized by ransomware gangs, while a contractor for CISA leaked sensitive GovCloud keys. Additionally, vulnerability exploitation has become the primary method for network breaches, and Drupal is preparing security updates for a critical vulnerability.

Vulnerability exploitation has become the primary vector for network entry, highlighting the urgent need for organizations to prioritize vulnerability management and patching strategies, especially in the context of zero-day vulnerabilities and critical software updates like those from Drupal.

Want more content like this?

twixb tracks your favorite blogs and social media, filters by keywords, and delivers personalized key learnings — straight to your inbox.

Create Your Own →Explore Newsfeeds

More from Cybersecurity News

Recent stories curated alongside this one.

Browse all Cybersecurity News →

Risky Bulletin: Microsoft takes down crime SaaS used by ransomware gangs

Want more content like this?

More from Cybersecurity News

Microsoft shares mitigation for YellowKey Windows zero-day

Risky Business #838 -- GitHub investigates possible breach

Verizon DBIR 2026: Vulnerability Exploitation Overtakes Credential Theft as Top Breach Vector

Max-severity flaw in ChromaDB for AI apps allows server hijacking

Verizon DBIR: Enterprises Face a Dangerous Vulnerability Glut