Recently, a large education systems company in the US was hit by a wave of attacks from the Hive ransomware, which compromised more than 50 VMware virtual machines and encrypted thousands of files. The hackers demanded $750,000 as ransom. The attack brought the company’s operations to a standstill for two to four weeks, causing significant damage to its databases, file
The AtomSilo ransomware emerged in September 2021, the group acts a little differently than other ransomware groups, the ransom amount is fixed, $1 million is charged for the release of the decryption key. If the company makes contact with the group in the first 48 hours that amount can drop by half. AtomSilo appears to be a variant of the
Deeep ransomware works like other ransomware groups, it’s part of the Dharma family. It encrypts files stored on the attacked computer or hacked network, making them inaccessible. Deeep changes the extension of the encrypted files, adding “1.doc.id-9ECE4KF” and variations. The group uses RSA and AES encryption. After the files are encrypted, a document named “FILES ENCRYPTED.txt”, is pinned to the desktop. It contains
Soon after a new wave of LockBit 2.0 ransomware attacks, many companies saw their business come to a standstill because of data locked out of encryption. Here is a case of decryption for one of them. Through our website chat, we received a contact from one of the companies that were victims of the recent wave of LockBit 2.0 ransomware
The BlogXX ransomware group recently emerged with the theft of patient data from Mediabank, an Australian health insurer, on October 12. According to authorities, the hacker group behind this attack is linked to the Russian hacker gang known as REvil. BlogXX is believed to be a variant of the latter, which was suspended from operations with the intervention of law enforcement in
Pozq ransomware was recently discovered after a sample submission on VirusTotal. After some analysis, evidence was highlighted that Pozq may have a relationship with the Djvu group.
Buybackdate ransomware is the name of the newest extension that was discovered by cybersecurity researchers through VirusTotal. According to the experts, buybackdate belongs to the same ransomware family as ZEPPELIN.
The RedKrypt ransomware has been active in recent days carrying out ransomware attacks. Researchers detected it by analyzing samples submitted to VirusTotal, an attack reporting platform.
Ransomware AROS is the name of malware that has been carrying out attacks by encrypting victims and charging ransom to deliver their files back.
The SchoolBoys ransomware was identified in recent weeks by cybersecurity researchers and has already been drawing attention for the recent discovery of it being linked to the same hacker group as the TommyLeaks ransomware.
Through unique technologies Digital Recovery can bring back encrypted data on any storage device, offering remote solutions anywhere in the world.
Discover the invisible vulnerabilities in your IT – with the 4D Pentest from Digital Recovery
