The Prometheus ransomware first appeared in February 2021, the FBI has issued an alert about it. It is a variant of the Thanos ransomware and claims to be an extension of the REvil Sodinokibi group, but there is no concrete evidence of a link between the two groups. This tactic is used by newly created groups that do not yet
A series of attacks by the HiveLeaks ransomware has garnered attention around the world, the FBI has issued a flash alert on attacks by this group. This extension is relatively new, their first appearance was in June 2021, they made a successful attack on Altus Group, a commercial real estate software development company, the amount requested for the ransom was
The Vice Society ransomware attacks led to an update to the Windows print spooler code. The port the group used for their attacks became known as “PrintNightmare”, the Windows update aimed to close this port. This flaw was in the printing system, after failing to execute the Spooler the hackers could access the operating system which granted them the same
In May of this year, the FBI released an alert about the considerable increase in attacks carried out by the Conti Ransomware. They use the RaaS (Ransomware as a Service), which is a way of outsourcing the spread of this ransomware, amplifying the number of attacks exponentially. They are evolving this type of service, instead of paying just a commission
The PYSA (Protect Your System Amigo) Ransomware or Mespinoza Ransomware has been operating effectively on the internet for a long time. He is famous for numerous attacks. So much so that the FBI has released a warning of the dangers of this ransomware. It has been in operation since December 2019 and remains active today. In order to pressure victims
After the successful attacks made by the Darkside Ransomware on the Colonial Pipe and the REvil Sodinokibi Ransomware on Kaseya, both ended their operations. This opened a gap for new ransomware extensions to appear in order to protagonists in the new attacks and in the so-called Ransomware as a Service (RaaS) which is the outsourcing of attacks. From this gap,
One of the biggest hacker attacks in recent years affected the IT systems of many companies. Up to 1,500 companies worldwide were affected, explains US IT service provider Kaseya, whose software served as the gateway to ransomware. It is very likely that the number of unreported cases is much higher, as many companies fear damage to their image. A vulnerability
Digital Recovery through several years of experience has developed exclusive technologies capable of recovering data encrypted by any ransomware, generally without paying the ransom amount and without the ransomware decryption key. Don’t be taken in by the so-called experts who, due to a lack of know-how, insist that data recovery is only possible with the help of hackers and that
The Makop ransomware has grown through its affiliate programme, RaaS (Ransomware as a Service), a tactic that aims to find partners to carry out attacks by taking only a commission on the value of the ransomware. This tactic aims to expand the attacks by bringing fame to the group. The main target of this group has been South Korean companies,
We received a case of REvil Sodinokibi ransomware attack, at the time the group was among the largest and most effective ransomware in the world, the group’s attacks have always targeted large corporations and in this case it was no different. The attack occurred over a weekend, in fact the ransomware had been on the company’s system for some time,
Through unique technologies Digital Recovery can bring back encrypted data on any storage device, offering remote solutions anywhere in the world.
Discover the invisible vulnerabilities in your IT – with the 4D Pentest from Digital Recovery
