The AtomSilo ransomware emerged in September 2021, the group acts a little differently than other ransomware groups, the ransom amount is fixed, $1 million is charged for the release of the decryption key. If the company makes contact with the group in the first 48 hours that amount can drop by half. AtomSilo appears to be a variant of the
The Khonsari ransomware was the first group to exploit known Apache Log4j vulnerabilities (CVE-2021-44228 and CVE-2021-45046), the group has focused its attacks on Windows servers that have not had Log4j updated. The group’s first registration occurred in December 2021, which all indicates that the group was created to directly exploit Apache Log4j vulnerabilities, but this may be just the beginning, the
Quantum Ransomware is one of the newer malware in activity, there are already some reports of attacks done by it. A bit different from the other ransomware, it doesn’t just encrypt data, it also installs an AZORult which is a Trojan horse that aims to steal user’s passwords and credentials, this is an extra headache for the victim, but the
The Makop ransomware has grown through its affiliate programme, RaaS (Ransomware as a Service), a tactic that aims to find partners to carry out attacks by taking only a commission on the value of the ransomware. This tactic aims to expand the attacks by bringing fame to the group. The main target of this group has been South Korean companies,
We received a case of REvil Sodinokibi ransomware attack, at the time the group was among the largest and most effective ransomware in the world, the group’s attacks have always targeted large corporations and in this case it was no different. The attack occurred over a weekend, in fact the ransomware had been on the company’s system for some time,
We saved a US company from an attack by HiveLeaks ransomware, one of the most active groups in the market. We tell you all about it now. It is becoming common to hear testimonials of companies that have had to close their doors because of ransomware attacks. Certainly, such an event can create traumas and complications for the smooth running
Digital Recovery develops unique solutions for decrypting ransomware files that can be applied to companies of all sizes. We can perform recovery from anywhere in the world via remote recovery. See how we helped an Italian company recover files encrypted by a ransomware attack. Cybercriminals often carry out mass attacks on many companies simultaneously. This gives them a higher probability
One of the largest River Logistics companies in Latin America contacted us to decrypt files following an attack by Quantum Ransomware. There has been a wave of attacks by the Quantum group targeting several different companies. Small, medium and large companies have been targeted. In this case a large Fluvial logistics company in Argentina was the victim. The hackers probably
Deeep ransomware works like other ransomware groups, it’s part of the Dharma family. It encrypts files stored on the attacked computer or hacked network, making them inaccessible. Deeep changes the extension of the encrypted files, adding “1.doc.id-9ECE4KF” and variations. The group uses RSA and AES encryption. After the files are encrypted, a document named “FILES ENCRYPTED.txt”, is pinned to the desktop. It contains
Soon after a new wave of LockBit 2.0 ransomware attacks, many companies saw their business come to a standstill because of data locked out of encryption. Here is a case of decryption for one of them. Through our website chat, we received a contact from one of the companies that were victims of the recent wave of LockBit 2.0 ransomware
Through unique technologies Digital Recovery can bring back encrypted data on any storage device, offering remote solutions anywhere in the world.
