The Week in Ransomware – May 19th 2023 – A Shifting Landscape
In the ever-shifting ransomware landscape, we saw new ransomware gangs emerge, threat actors return from a long absence, operations shifting…
Microsoft: Notorious FIN7 hackers return in Clop ransomware attacks
A financially motivated cybercriminal group known as FIN7 resurfaced last month, with Microsoft threat analysts linking it to attacks where the…
Qilin Ransomware Operation Outfits Affiliates With Sleek, Turnkey Cyberattacks
Researchers infiltrate a ransomware operation and discover slick services behind Qilin's Rust-based malware variant.
‘MichaelKors’ Showcases Ransomware’s Fashionable VMware ESXi Hypervisor Trend
Wide use and lack of support for malware detection technologies has made VMware's virtualization technology a prime target for cyberattackers.
Multinational tech firm ABB hit by Black Basta ransomware attack
Swiss multinational company ABB, a leading electrification and automation technology provider, has suffered a Black Basta ransomware attack, reportedly impacting…
New ransomware decryptor recovers data from partially encrypted files
Security researchers have shared a new Python-based ransomware recovery tool named 'White Phoenix' on GitHub, which lets victims of ransomware…
How To Survive a Ransomware Attack and Fix Ransomware Breach Face
By Derek Nugent, Vice President of Revenue at Difenda Ransomware attacks have become a growing concern for businesses and individuals…
Linux version of RTM Locker ransomware targets VMware ESXi servers
RTM Locker is the latest enterprise-targeting ransomware operation found to be deploying a Linux encryptor that targets virtual machines on…
Effects of the Hive Ransomware Group Takedown
Despite some success in limiting damage from Hive, there's no time to relax security vigilance.
New QBot email attacks use PDF and WSF combo to install malware
QBot malware is now distributed in phishing campaigns utilizing PDFs and Windows Script Files (WSF) to infect Windows devices. [...]