Get Started

Cybersecurity Services

Cybersecurity Services
vCISO / Fractional CISO
Offensive Security & Penetration Testing
Incident Response & Digital Forensics
Cybersecurity Awareness
CMMC Compliance

Managed IT Services

Help Desk & End User Support
NOC (Server/Network RMM)
MDR/XDR (AI-Assisted SOC)

Professional Services

Remote Deployment and Operations
Staff Augmentation
AI & Automation Consulting

Solutions

Infrastructure & Security
Cloud & Data Center
Data Protection & Backup/DR
Zero Trust Security
Remote Workforce & Endpoints
Collaboration & Innovation
Virtual Desktops & Apps (VDI)
Unified Communications
Mobility Solutions

Industries

Federal Government
State and Local Government
Healthcare
Education
Critical Infrastructure
All Industries

Partners

Omnissa
Dell EMC
Hitachi
Microsoft
Google
HPE
Nutanix
Commvault
FileCloud
Login VSI
TURBO.NET
Red Hat
All Partners

Insights

Blog
Z7 Cyber Intelligence
Case Studies
Capability Statement

About

Why Z7 Solutions
Contract Vehicles
Careers
Contact Us
  • Home
  • Z7 Cyber intelligence
  • Akira ransomware

Akira Ransomware

Z7-TAF THREAT SCORE
0 /10.0

CLASSIFICATION

CRITICAL THREAT

Key Findings

$244.17M+ Confirmed ransoms

Confirmed ransoms since March 2023, placing Akira among the top five most profitable ransomware operations globally.

683 Victims

Victims claimed January-November 2025, making Akira the second most active ransomware strain globally behind only Qilin.

SonicWall Campaign

July-October 2025 exploitation of CVE-2024-40766 compromised 70+ organizations in October alone; 438,000+ devices still exposed.

Sub-4 hour attacks

CISA advisory confirms Akira exfiltrated data in just over two hours from initial access in some 2025 incidents.

Full Report Includes

  • Complete Z7-TAF scoring across 8 dimensions with proprietary methodology
  • Three Z7-BAF breach assessments (all 2025): Hitachi Vantara (8.71), SonicWall Campaign (8.29), Global Data Storage Company (8.43)
  • Conti lineage analysis and technical evolution from C++ to Rust-based Akira_v2
  • June 2025 Nutanix AHV expansion beyond VMware ESXi and Hyper-V
  • Unit 42 case study: 42-day compromise via ClickFix social engineering
  • M&A security risks: Why acquired SonicWall devices create exposure
  • Priority defensive recommendations aligned with November 2025 CISA advisory

PREVIEW: Z7-BAF ASSESSMENTS

Incident Score Key Factor
Hitachi Vantara (Apr 2025) 8.71 Ransomware recovery provider compromised; government projects affected
SonicWall Campaign (Jul–Oct 2025) 8.29 Mass exploitation; 70+ victims October alone; year-old CVE
Global Data Storage Co (Nov 2025) 8.43 42-day compromise; dual EDR failed to alert; Unit 42 case study
Get your AKIRA Intelligence Report NOW!
This page provides an executive-level preview only. Detailed analysis, scoring methodology, and proprietary frameworks are available in the full intelligence report.