Tag: Ransomware
Recover blockZ Ransomware
Ransomware

BlockZ Ransomware

BlockZ ransomware has been extremely consistent in its recent attacks, with countless victims emerging with files encrypted by the group. The group acts mainly with spam and phishing email campaigns, this campaign consists of sending numerous emails with important messages such as from banks, post offices, etc. Requesting the user to download a document to analyse the terms and in that

READ MORE →
NB65 Ransomware
Ransomware

NB65 Ransomware

NB65 ransomware emerged after the leak of the Conti ransomware source code and emerged to be its antagonist. Russia’s invasion of Ukraine showed that there is a new form of warfare, one that goes far beyond military might. The cyber front of the attacks proved extremely effective, hackers were called to the frontlines on both sides, and in the face of this, some

READ MORE →
Blue Locker Ransomware
Ransomware

Blue Locker Ransomware

Blue Locker ransomware aims to encrypt all stored files, thereby blocking access to them. The group has focused its attacks on databases, servers, storage devices and any other devices that contain a large amount of stored data. The group mainly uses spam e-mail campaigns, these e-mails contain attached files that appear to be normal, such as PDF, Word, Excel, etc. After

READ MORE →
Khonsari Ransomware
Ransomware

Khonsari Ransomware

The Khonsari ransomware was the first group to exploit known Apache Log4j vulnerabilities (CVE-2021-44228 and CVE-2021-45046), the group has focused its attacks on Windows servers that have not had Log4j updated. The group’s first registration occurred in December 2021, which all indicates that the group was created to directly exploit Apache Log4j vulnerabilities, but this may be just the beginning, the

READ MORE →
Quantum Ransomware
Ransomware

Quantum Ransomware

Quantum Ransomware is one of the newer malware in activity, there are already some reports of attacks done by it. A bit different from the other ransomware, it doesn’t just encrypt data, it also installs an AZORult which is a Trojan horse that aims to steal user’s passwords and credentials, this is an extra headache for the victim, but the

READ MORE →
Yqal Ransomware
Ransomware

Yqal Ransomware

The Yqal ransomware is one of the variations of the Stop/Djvu ransomware, as well as the Robm ransomware. Stop/Djvu has created a huge cartel of more than 370 ransomware variations. The STOP/Djvu cartel is the author of numerous attacks, easily the damage caused by their attacks reach into the thousands of dollars. Yqal uses the RSA 2048 + Salsa20 encryption algorithm, files that

READ MORE →
Xot5ik Ransomware
Ransomware

Xot5ik Ransomware

The Xot5ik ransomware is a variant of the Thanos ransomware, which has been responsible for numerous attacks, Europe has been the target of most attacks. As usual for large ransomware groups, after numerous successful attacks they cease their activities because their attacks attract the attention of the authorities. But after some time, the group reappears under a new name and

READ MORE →
Ransomware Robm
Ransomware

Ransomware Robm

Robm ransomware is part of the Djvu/STOP ransomware quartel, which is one of the ransomware with the most variants. The cartel is responsible for hundreds of attacks around the world. Like members of the Djvu family, Robm uses AES-256 encryption. This algorithm generates only one decryption key, it is unique and if it is deleted the files cannot be recovered by hackers. Criminals

READ MORE →
NEEH Ransomware
Ransomware

NEEH Ransomware

NEEH ransomware is one of the newest and most lethal data encryption agents in circulation, the group has been responsible for numerous attacks around the world, causing hundreds of dollars in damage. NEEH encrypts the victim’s data using the RSA and AES algorithms, these are the most commonly used algorithms by ransomware groups. This encryption can only be broken with the

READ MORE →
Ransomware XIII
Ransomware

XIII Ransomware

XIII ransomware is a member of the Phobos ransomware family. Phobos was one of the top ransomware attacks of 2021. Like the vast majority of ransomware groups, Phobos went out of business after a big spike in successful attacks. But what is becoming very common is the creation of families by these groups. XIII ransomware invades victims’ devices through malicious emails, illicit

READ MORE →

Through unique technologies Digital Recovery can bring back encrypted data on any storage device, offering remote solutions anywhere in the world.

Discover the invisible vulnerabilities in your IT – with the 4D Pentest from Digital Recovery