Ransomware , Data Security Extensive Citizens Financial Group, Frost Bank breaches claimed by Everest ransomware April 22, 2026 Share By SC Staff (Adobe Stock) Cybernews reports that major U.S. banks Citizens Financial Group and Frost Bank were allegedly compromised by the Everest ransomware-as-a-service operation, which has threatened to expose troves of data pilfered from both financial institutions by Apr. 26. Nearly 3.4 million records were purportedly pilfered from Citizens Financial, with samples revealing full names, home addresses, account numbers, and internal document flags, while almost 250,000 customers' data were claimed to have been stolen from Frost Bank, whose samples showed Social Security numbers, tax identification numbers, mortgage interest rates, and other information on top of names and addresses. Citizens Bank has disclosed having its masked test data, including limited customer information, stolen following an attack against a third-party vendor but denied the compromise of its systems. Additional safeguards have already been implemented by Citizens amid an ongoing investigation into the incident. Such a development comes after Everest was reported to have targeted Nissan , Collins Aerospace, Iberia Airlines, Under Armour, and BMW. An In-Depth Guide to Ransomware Get essential knowledge and practical strategies to protect your organization from ransomware attacks. Learn More SC Staff Related Ransomware Ex-ransomware negotiator admits involvement in multi-million dollar extortion scheme SC Staff April 22, 2026 Former DigitalMint ransomware negotiator Angelo Martino III has pleaded guilty after the Justice Department discovered he secretly worked with hackers, while pretending to help clients who were victims of ransomware groups, CyberScoop reports. Breach Almost 600K reportedly impacted by separate US healthcare breaches SC Staff April 22, 2026 Three healthcare providers across the U.S. were noted by the Department of Health and Human Services' breach tracker to have been impacted by separate cyberattacks last year, which have collectively compromised data from about 600,000 individuals, SecurityWeek reports. Malware Multi-stage PureRAT campaign harnesses PNGs for fileless execution SC Staff April 22, 2026 GBHackers News reports that ordinary PNG images have been injected with portable executable payloads to facilitate the fileless execution of the PureRAT malware as part of a new multi-stage attack campaign. Related Events Cybercast Ransomware reloaded: Finding resilience when attackers wield AI Wed May 13 Virtual Conference Ransomware Resilience: Strategies to Defend, Mitigate, and Recover On-Demand Event Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms Bit Block Cipher Byte Ciphertext Data Aggregation Diffie-Hellman Digital Envelope Digital Signature Digital Signature Algorithm (DSA) Digital Signature Standard (DSS) You can skip this ad in 5 seconds