Expert Insights

The BlooDy ransomware has been known since May 2022, with an attack targeting a group of medical and dental offices in New York City. Recently, there was an event that pleased many cybercrime wannabes. After a fight between the LockBit operator and its developer, the LockBit 3.0 ransomware builder leaked on Twitter. This builder makes it accessible to anyone,

The Play ransomware began its activities in June 2022. Since then, many businesses and government institutions have fallen victim to the Play ransomware. Among them is the Judiciary of Cordoba in Argentina. A large case that involved companies such as Microsoft, Cisco and Trend Micro for the investigation into the attack. Because of the event, the IT system of the

The Dark Angels ransomware has been active since May 2022, all indications are that it belongs to the Babuk ransomware family. As usual ransomware groups improve their malware and release new variants frequently. The Dark Angel ransomware is not left out of this move either. We have seen that the ransomware called ELF has appropriated a good technical part of

Uptycs researchers have recently discovered a new ransomware that attacks Linux systems. Its name, ELF ransomware. Ransomware creators usually target Windows operating systems. But this time, technology lovers’ favorite OpenSource system has been exposed to its vulnerability. ELF ransomware, in reference to “Executable and Linkable Format” files, is able to encrypt files within the Linux system based on the folder

Around July of this year, the HavanaCrypt ransomware emerged in the cyber world. It has been carrying out attacks with an interesting twist. HavanaCrypt masquerades as a Google software update to encrypt virtual machines. The ransomware is written in the .NET language and uses an OpenSource obfuscator called Obfuscate to hide feature names used in the ransomware. The group behind

In early July, researchers identified suspicious activity from a previously unknown, or not so unknown, ransomware, the Monti ransomware. You could say it is almost new, as it is quite similar to the famous Conti ransomware. Some say they are “Doppelganger”, which means look-alike. Some time ago the Conti group suffered a break-in and a major data leak, including source