Expert Insights
Ransomware Cheers
The Cheers ransomware, even with only a short time of activity, has amassed several victims around the world, drawing attention. Cheers has focused its efforts on unprotected virtual systems, such as VMware ESXi environments. This is not the first time that VMware servers have been prime targets for ransomware attacks. Groups such as LockBit or HiveLeaks have acted in this
Ransomware Checkmate
A new ransomware extension, called Checkmate, has been identified and has made numerous attacks targeting NAS (Network Attached Storage) devices. The checkmate ransomware first appeared in May 2022, breaking into servers manufactured by the company QNAP. In an official QNAP statement released in July of this year, the company commented that hackers break into the system “using a dictionary attack
Ransomware BianLian
BianLian ransomware is intended to encrypt data and demand a ransom in exchange for the release of the decryption key. Due to the importance of the data, many victims, be it a business or an individual, end up giving in and paying the requested ransom. Infection with a dangerous virus, such as the BianLian ransomware, can cause severe damage to
Ransomware AiDLocker
The AiDLocker ransomware has been drawing attention in recent days. The group has been manifesting itself on forums and social networks such as Telegram, introducing its malware. We can deduce, due to its relationship with other Russian groups, that the AiDLocker ransomware probably originates from Russia. The group has been active in advertising its malware. In the current update, we
Ransomware Ech0raix
The Ech0raix ransomware has been known since 2019. However, recently the group responsible for the Ech0raix ransomware attacks has updated its malware and has once again fired malicious email campaigns around the world. The group’s attacks are targeted exclusively at QNAP NAS (Network Attached Storage) devices, which has forced the manufacturer QNAP to release problem-solving updates frequently. The Ech0raix ransomware
Ransomware Fonix
The Fonix ransomware was released in June 2020; however, it did not gain prominence at first. However, in early 2021, the ransomware hit 182 companies, putting the group in the spotlight alongside other extensions such as REvil Sodinokibi and LockBit. It is common for systems to be infected by ransomware through macros, malicious ads, and pirated downloads. Fonix propagates itself