The AtomSilo ransomware emerged in September 2021, the group acts a little differently than other ransomware groups, the ransom amount is fixed, $1 million is charged for the release of the decryption key. If the company makes contact with the group in the first 48 hours that amount can drop by half. AtomSilo appears to be a variant of the
The Khonsari ransomware was the first group to exploit known Apache Log4j vulnerabilities (CVE-2021-44228 and CVE-2021-45046), the group has focused its attacks on Windows servers that have not had Log4j updated. The group’s first registration occurred in December 2021, which all indicates that the group was created to directly exploit Apache Log4j vulnerabilities, but this may be just the beginning, the
Quantum Ransomware is one of the newer malware in activity, there are already some reports of attacks done by it. A bit different from the other ransomware, it doesn’t just encrypt data, it also installs an AZORult which is a Trojan horse that aims to steal user’s passwords and credentials, this is an extra headache for the victim, but the
The Makop ransomware has grown through its affiliate programme, RaaS (Ransomware as a Service), a tactic that aims to find partners to carry out attacks by taking only a commission on the value of the ransomware. This tactic aims to expand the attacks by bringing fame to the group. The main target of this group has been South Korean companies,
Deeep ransomware works like other ransomware groups, it’s part of the Dharma family. It encrypts files stored on the attacked computer or hacked network, making them inaccessible. Deeep changes the extension of the encrypted files, adding “1.doc.id-9ECE4KF” and variations. The group uses RSA and AES encryption. After the files are encrypted, a document named “FILES ENCRYPTED.txt”, is pinned to the desktop. It contains
The BlogXX ransomware group recently emerged with the theft of patient data from Mediabank, an Australian health insurer, on October 12. According to authorities, the hacker group behind this attack is linked to the Russian hacker gang known as REvil. BlogXX is believed to be a variant of the latter, which was suspended from operations with the intervention of law enforcement in
Pozq ransomware was recently discovered after a sample submission on VirusTotal. After some analysis, evidence was highlighted that Pozq may have a relationship with the Djvu group.
Buybackdate ransomware is the name of the newest extension that was discovered by cybersecurity researchers through VirusTotal. According to the experts, buybackdate belongs to the same ransomware family as ZEPPELIN.
The RedKrypt ransomware has been active in recent days carrying out ransomware attacks. Researchers detected it by analyzing samples submitted to VirusTotal, an attack reporting platform.
Ransomware AROS is the name of malware that has been carrying out attacks by encrypting victims and charging ransom to deliver their files back.
Through unique technologies Digital Recovery can bring back encrypted data on any storage device, offering remote solutions anywhere in the world.
