Expert Insights

The Clop ransomware emerged in mid-February 2019. Six members of the group were arrested in June 2021 in Ukraine following an investigation by International police (from Ukraine, the United States and South Korea), but the group is still active. The group was responsible for many attacks on large companies, and caused an estimated $500 million in damages. The attacks were

Haron ransomware is relatively new, along with Blackmatter ransomware and AvosLocker it has been vying for the spot left by REvil Sodinokibi and Darkside and especially Avaddon ransomware which seems to be Haron’s direct predecessor. The Haron group follows a “good manners” norm, they restrict attacks to specific sectors such as: Hospitals. Critical infrastructure facilities (nuclear power plants, power plants, water treatment facilities).

Avos Locker ransomware comes as a response to the “retirement” of larger groups that were prominent with successful attacks around the world such as REvil Sodinokibi and Darkside. But it is not alone, Blackmatter ransomware is also in contention for that space. The Avos Locker ransomware emerged in late June 2021, the group has adopted the RaaS (Ransomware as a service) tactic which is the outsourcing

Ragnar Locker Ransomware acts differently from other ransomware, because in addition to invading the system and encrypting the data, it also shuts down installed programs that could cause you some risk (such as software updaters and anti-malware) and that can somehow fight the ransomware attack and stop its system invasion. This Ransomware emerged in late 2019, and like many other

RansomEXX is part of the group that has been most active recently, this group consists of Defray 777 and Ransom X ransomware. Together, they are responsible for hundreds of attacks worldwide. RansomEXX was developed to attack Windows operating systems, but over time it has been updated and can also attack Linux operating systems, although Linux encryption is not as effective