Pay the ransom or risk data carnage.

The Qilin ransomware gang has claimed responsibility for an attack against Lee Enterprises. In a separate incident, Thai police have arrested a suspected hacker behind more than 90 data leaks. A threat actor known as JavaGhost has been using compromised AWS environments to launch phishing campaigns. Meanwhile, the LotusBlossum cyberespionage group has been targeting Southeast Asia with different versions of Sagerunex and hacking tools. Researchers have also discovered a malware campaign that abuses Microsoft dev tunnels for command and control communication. In other news, a new bill called the Farm and Food Cybersecurity Act has been reintroduced to protect the food supply chain from cyber threats. The CyberWire Daily podcast features an interview with Keith Mularski, Chief Global Ambassador at Qintel and former FBI Special Agent, discussing the cyber underground's focus on cryptocurrency. The podcast also mentions a new pass-the-cookie attack that can bypass Microsoft 365 and YouTube MFA logins. Listeners are encouraged to share their feedback and complete a brief listener survey to help improve the show.