What if your backups in the cloud disappeared the moment you needed them most?

Unlike traditional on-premises ransomware, where the threat actor typically deploys malware to encrypt critical files across endpoints within the compromised network and then negotiates for a decryption key, cloud-based ransomware introduces a fundamental shift.

August 29, 2025

It’s no secret that data stored in the cloud should also be backed up. Yet, many organizations still overlook this critical safeguard.

Microsoft Threat Intelligence recently reported a worrying development: some threat actors are shifting towards cloud-based ransomware—and the trend is only going to accelerate.

Unlike traditional on-premises ransomware, which relies on malware to encrypt files across endpoints before negotiating for a decryption key, cloud-based ransomware represents a paradigm shift in attack methods.

🚨 Take Storm-0501 as an example:

Rapidly exfiltrates massive amounts of data
Deletes data and backups inside the cloud environment
Demands ransom—all without deploying traditional malware

This represents a fundamental shift in how organizations need to think about resilience and cloud security. Backups, layered defenses, and proactive monitoring are no longer optional—they’re essential.

🔗 Read Microsoft’s full article here:

https://www.microsoft.com/en-us/security/blog/2025/08/27/storm-0501s-evolving-techniques-lead-to-cloud-based-ransomware/

Need help in improving your organisations security posture? We are here to help.

No items found.

Your Security, Our Priority. Get in Touch

Reach out today, and our team will help you take the first step toward protecting what matters most.

info@seiff.ee

+372 50 20 235

Tallinn, Estonia

Seiff Cybesecurity Ltd

Thank you! Your message has been received!

Oops! Something went wrong while submitting the form.