The Midas ransomware is one of the variations of the Thanos ransomware that has emerged recently, Thanos was a large group that emerged in 2020, after numerous attacks the group disappeared, after a few months the source code of the malware was leaked, from this leak emerged the ransomware Prometheus, Spook, Haron and the newest of the group, Midas. There
Netwalker ransomware is among the big ransomware groups, together with REvil Sodinokibi, LockBit. 2.0 and Conti. The group has specialized in attacks on large corporations. The ransomware was created by the hacker group Circus Spider, which in turn is part of an even larger group, Mummy Spider. This structure shows that ransomware attacks have become a highly profitable business, attracting
Ranion ransomware has drawn attention on dark web forums for its low sale price. The group works with the RaaS (Ransomware as a Service) tactic. The group has been offering free trial to its buyers, after which it is charged prices of 0.95 Bitcoin/year (US $960/year) or 0.6 Bitcoin/6 months (US $605/6 months). This easy access to a powerful ransomware
Exorcist ransomware has surfaced on Russian dark web forums looking for affiliates willing to carry out attacks with its malware, the group offers 70% of the ransom to its affiliates. This tactic is called RaaS (Ransomware as a Service) which is the outsourcing of attacks, is used to expand the group’s influence. Affiliates have some freedom to carry out attacks, one
Pandora ransomware appears to be a variation of the Rook ransomware, the group was first seen in March 2022. Pandora comes from a lineage of other powerful malware, such as Rook itself, which developed its malware based on the source code of the Babuk ransomware. The group primarily targets large corporations. Pandora is designed to spread as fast as possible
The Mindware ransomware is one of the newest groups in evidence, it is unclear whether it is actually a new group or an old group with a new name. The group was first spotted in March of this year, and has already boasted numerous victims on its leak site. In May, the group ranked fifth among the ransomware groups with
Entropy ransomware comes from a long line of malware that has been hacking and stealing data from large corporations for years, it is a variation of DoppelPaymer ransomware and part of the EvilCorp gang. The gang has other ransomware such as WastedLocker, Hades and Phoenix. The EvilCorp group has become so big that the US Treasury Department has placed sanctions
The CryLock ransomware is a variant of the Cryakl ransomware, a group that was first seen in 2020, like its predecessor CryLock attacks large enterprises, although regular users are also part of its targets. The group uses various tactics to access the victim’s system, such as spam email campaigns, unsecured RDP port, malicious downloads, among others. These are just a
The BabyDuck ransomware may seem harmless by name, but believe me, it is not. The group is responsible for numerous attacks in recent months, it is as destructive as any other ransomware group. BabyDuck uses the AES+RSA algorithm to encrypt the victim’s files, this algorithm is nearly impossible to break, all files affected by it receive the .babyduck extension and
The Admin Locker ransomware was first seen in December 2021, the group uses a junction of the RSA and AES algorithms for encryption, this algorithm is extremely complex and produces a decryption key that only the group has access to. The Admin Locker targets all files stored on the device as well as backup system so that all possibilities to
Through unique technologies Digital Recovery can bring back encrypted data on any storage device, offering remote solutions anywhere in the world.
Discover the invisible vulnerabilities in your IT – with the 4D Pentest from Digital Recovery
