Ransomware
VanHelsing ransomware RaaS targets multiple platforms
Imeripotiwa na AI Picha iliyoundwa na AI
A new ransomware-as-a-service operation called VanHelsing emerged on March 7, 2025, quickly claiming at least three victims. It supports attacks on Windows, Linux, BSD, ARM, and ESXi systems, with affiliates retaining 80% of ransoms after a $5,000 deposit. The group prohibits targeting entities in the Commonwealth of Independent States.
A ransomware group known as NightSpire has claimed responsibility for hacking into Hyatt's systems and stealing data. The group states it has obtained nearly 50GB of files from the hotel chain, which it plans to sell. This incident highlights ongoing cybersecurity threats to the hospitality sector.
Imeripotiwa na AI
Two US-based cybersecurity professionals have pleaded guilty to participating in Blackcat ransomware attacks. Ryan Clifford Goldberg and Kevin Tyler Martin face potential years in prison for their involvement.
The U.S. Cybersecurity and Infrastructure Security Agency has issued an urgent alert about a critical Linux kernel vulnerability, CVE-2024-1086, now being used by ransomware operators. This flaw allows local privilege escalation and was patched in January 2024. The warning highlights ongoing risks to enterprise systems despite available fixes.
Imeripotiwa na AI
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about ongoing ransomware attacks targeting a known Linux kernel vulnerability. Federal agencies must update affected systems by November 20 or discontinue their use. The alert highlights that Linux is not immune to such threats, debunking myths about ransomware's decline and Windows as the sole target.
Threat actor zeta88 is promoting a new ransomware-as-a-service operation called The Gentlemen's RaaS on hacking forums, targeting Windows, Linux, and ESXi systems. The platform offers affiliates 90 percent of ransom payments and features cross-platform encryption tools developed in Go and C. This development highlights the ongoing commercialization of sophisticated ransomware targeting enterprise environments.
Imeripotiwa na AI
A new report suggests that ransomware attacks are becoming less successful for cybercriminals, with the number of firms paying ransoms plummeting. This indicates a potential shift in the cybersecurity landscape. The findings highlight that ransomware is not always as effective as it appears.
CyberVolk's VolkLocker hampered by plaintext master key flaw
Ijumaa, 12. Mwezi wa kumi na mbili 2025, 11:54:38CyberVolk launches VolkLocker ransomware targeting Linux and Windows
Ijumaa, 12. Mwezi wa kumi na mbili 2025, 08:50:00Russian cybercriminals release new ransomware
Jumatatu, 8. Mwezi wa kumi na mbili 2025, 20:29:17Cl0p ransomware impacts patient and staff data at Barts Health NHS
Jumanne, 18. Mwezi wa kumi na moja 2025, 21:34:57Kraken ransomware benchmarks systems before silent encryption
Jumamosi, 1. Mwezi wa kumi na moja 2025, 03:51:02CISA warns of exploited Linux kernel vulnerability in ransomware attacks
Ijumaa, 31. Mwezi wa kumi 2025, 06:47:35CISA confirms Linux kernel flaw exploited in ransomware attacks
Alhamisi, 30. Mwezi wa kumi 2025, 23:30:36Experts warn of ransomware risks in popular VPN tools
Jumatano, 29. Mwezi wa kumi 2025, 16:22:06Qilin ransomware uses WSL to run Linux encryptors on Windows
Jumatano, 29. Mwezi wa kumi 2025, 14:55:48Gunra ransomware exploits Windows and Linux with encryption vulnerabilities