Ransomware

VanHelsing ransomware RaaS targets multiple platforms

2025년 11월 11일 AI에 의해 보고됨 AI에 의해 생성된 이미지

A new ransomware-as-a-service operation called VanHelsing emerged on March 7, 2025, quickly claiming at least three victims. It supports attacks on Windows, Linux, BSD, ARM, and ESXi systems, with affiliates retaining 80% of ransoms after a $5,000 deposit. The group prohibits targeting entities in the Commonwealth of Independent States.

Cyberattack disrupts canvas during us final exams

A ransomware attack hit the Canvas learning platform on Thursday, forcing schools and colleges across the US to postpone or reschedule final exams. The disruption came just as students prepared for year-end testing.

ShinyHunters nears Rockstar data leak deadline in ongoing breach saga

2026년 04월 13일 AI에 의해 보고됨

As the April 14 ransom deadline approaches, ShinyHunters has reiterated threats to release breached Rockstar Games data obtained via third-party Anodot, following the studio's confirmation of limited non-material access with no player impact. This updates coverage of the initial breach claim reported earlier this week.

기술

Russian cybercriminals release new ransomware

기술

Cl0p ransomware impacts patient and staff data at Barts Health NHS

기술

Kraken ransomware benchmarks systems before silent encryption

RansomHouse ransomware group leaks Fulgar's confidential files

The ransomware group RansomHouse has claimed responsibility for a cyber attack on Fulgar, a major fabric supplier to brands like H&M and Adidas. Confidential files exposing the company's finances, client lists, and global operations have appeared online. The breach highlights ongoing risks in the supply chain for fashion giants.

Kraken ransomware expands to Windows, Linux, and ESXi systems

2025년 11월 14일 AI에 의해 보고됨

Cisco Talos researchers have identified Kraken, a Russian-speaking ransomware group that emerged in early 2025 from the HelloKitty cartel, conducting big-game-hunting and double-extortion attacks. The group now targets enterprise environments with cross-platform encryptors for Windows, Linux, and VMware ESXi systems. Attacks observed in August 2025 exploited SMB vulnerabilities for initial access.

Experts warn of ransomware risks in popular VPN tools

Security experts have raised alarms about vulnerabilities in VPN software from Cisco, Citrix, and SonicWall, linking them to increased ransomware threats. Users of these tools face heightened risks of infection, according to a recent analysis. The warning highlights ongoing concerns in enterprise cybersecurity.

Qilin ransomware uses WSL to run Linux encryptors on Windows

2025년 10월 29일 AI에 의해 보고됨

Cybersecurity researchers have uncovered a tactic by the Qilin ransomware group that exploits Microsoft's Windows Subsystem for Linux (WSL) to execute Linux-based encryption tools on Windows machines. This method allows attackers to bypass many endpoint detection and response (EDR) systems by operating in a Linux sandbox environment that traditional tools often overlook. The technique highlights the growing sophistication of ransomware operations blending operating systems.

2026년 02월 19일 09시 18분