Google Drive ransomware detection reaches general availability and turns on by default
Security Tool/Service
Summary
Hide ▲
Show ▼
Google Drive's AI-powered ransomware detection has reached general availability and is now enabled by default for paying users, expanding automatic protection for synced files. The service now pauses file syncing when ransomware is detected and alerts users and admins. It also supports Drive restoration so corrupted files can be rolled back after cleanup.
Related Happenings
Storm-1175 high-velocity zero-day and N-day intrusion campaign
Campaign
First: 07.04.2026 09:35
Last: 07.04.2026 09:35
Sources 1
About this happening:
**Storm-1175** is running a **high-velocity intrusion campaign** that chains **zero-day** and **N-day vulnerabilities** to gain initial access to exposed systems, raising the risk...
Storm-1175 high-velocity zero-day and N-day intrusion campaign
CampaignAbout this happening: **Storm-1175** is running a **high-velocity intrusion campaign** that chains **zero-day** and **N-day vulnerabilities** to gain initial access to exposed systems, raising the risk...
Storm-1175 high-velocity exploit campaign
Campaign
First: 06.04.2026 19:56
Last: 06.04.2026 19:56
Sources 1
About this happening:
**Storm-1175** is running a **high-velocity exploit campaign** that rapidly turns access into **Medusa ransomware** deployment, creating risk of **data exfiltration** and encrypte...
Storm-1175 high-velocity exploit campaign
CampaignAbout this happening: **Storm-1175** is running a **high-velocity exploit campaign** that rapidly turns access into **Medusa ransomware** deployment, creating risk of **data exfiltration** and encrypte...
Microsoft 365 Backup adds granular file- and folder-level restore for SharePoint and OneDrive
Security Tool/Service
First: 06.03.2026 16:21
Last: 06.03.2026 16:21
Sources 1
About this happening:
**Microsoft 365 Backup** is adding **file- and folder-level restore** for **SharePoint** and **OneDrive**, reducing the need for a full site or drive recovery when only a single i...
Microsoft 365 Backup adds granular file- and folder-level restore for SharePoint and OneDrive
Security Tool/ServiceAbout this happening: **Microsoft 365 Backup** is adding **file- and folder-level restore** for **SharePoint** and **OneDrive**, reducing the need for a full site or drive recovery when only a single i...
PDFSider malware deployed for stealthy Windows backdoor access
Malware Activity
First: 19.01.2026 23:00
Last: 19.01.2026 23:00
Sources 1
About this happening:
The **PDFSider** malware is being used to deliver payloads on **Windows systems**, giving attackers a stealthy backdoor for **long-term covert access** and raising the risk of ran...
PDFSider malware deployed for stealthy Windows backdoor access
Malware ActivityAbout this happening: The **PDFSider** malware is being used to deliver payloads on **Windows systems**, giving attackers a stealthy backdoor for **long-term covert access** and raising the risk of ran...
Rising encryptionless extortion incidents against enterprises in 2025
Target Trend
First: 15.01.2026 17:45
Last: 15.01.2026 17:45
Sources 1
About this happening:
**Encryptionless extortion** surged in **2025** as attackers increasingly skipped ransomware encryption and instead stole data to pressure victims across **enterprise environments...
Rising encryptionless extortion incidents against enterprises in 2025
Target TrendAbout this happening: **Encryptionless extortion** surged in **2025** as attackers increasingly skipped ransomware encryption and instead stole data to pressure victims across **enterprise environments...
Timeline
-
01.04.2026 09:35 3 articles · 1mo ago
Google Drive ransomware detection reaches general availability
Initial DisclosureGoogle Drive ransomware detection reaches general availability and is enabled by default for all paying users, scanning files when they are synced from a desktop computer to Drive, pausing desktop sync when ransomware-encrypted files are found, alerting the affected user and the Google Admin console, and supporting recovery through the Drive restoration tool; admins can disable the feature in the Google Admin console and endpoints need Google Drive for desktop v.114 or later to enable detection alerts.
Show sources
- Google Drive ransomware detection now on by default for paying users — www.bleepingcomputer.com — 01.04.2026 09:35
- Google Drive ransomware detection now on by default for paying users — www.bleepingcomputer.com — 01.04.2026 09:35
- Google Drive for desktop gets AI-powered ransomware detection — www.bleepingcomputer.com — 01.10.2025 18:10