Charon Ransomware targets Middle East with APT attack methods Pierluigi Paganini August 13, 2025 New Charon ransomware targets Middle East public sector and aviation, using APT-style tactics, EDR evasion, and victim-specific ransom notes. Cybersecurity researchers have discovered a new campaign that employs a previously undocumented ransomware family called Charon to target the Middle East’s public...Read More
TLDR US and global law enforcement seized $1 million from the BlackSuit ransomware group. BlackSuit gang has compromised over 450 US victims and received $370 million in ransom. Ransomware attacks from BlackSuit targeted critical sectors including healthcare. The seizure is part of an ongoing effort to disrupt ransomware operations worldwide. In a coordinated effort involving...Read More
The US Department of Justice, in collaboration with multiple international law enforcement agencies, has taken significant action against the ransomware group BlackSuit. The operation, conducted in late July 2024, led to the seizure of servers, domain names, and approximately $1 million in cryptocurrency linked to the group. The Justice Department announced the takedown on Monday,...Read More
The Interlock ransomware gang has flaunted a 43GB haul of files allegedly stolen from the city of Saint Paul, following a late-July cyberattack that forced the Minnesota capital to declare a state of national emergency. The listing on Interlock’s dark web leak site, seen by The Register, was published on August 11. It includes samples...Read More
– U.S. DOJ seized $1 million in crypto and infrastructure from BlackSuit ransomware group, disrupting its operations. – BlackSuit, which extorted $370 million from 450+ victims via double-extortion tactics, now faces crippled infrastructure. – The operation highlights DOJ’s enhanced crypto-tracking capabilities and global collaboration to combat digital extortion. – Seizures demonstrate law enforcement’s ability to...Read More
In a significant blow to cybercrime networks, the U.S. Department of Justice announced on August 12, 2025, the seizure of over $1 million in cryptocurrency linked to the notorious BlackSuit ransomware gang. This operation, part of a broader international effort, dismantled key infrastructure used by the group to extort victims across critical U.S. sectors. The...Read More
Coveware by Veeam has published its Q2 2025 ransomware report, detailing a sharp rise in targeted social engineering attacks and a significant increase in ransom payments, with data exfiltration-led extortion playing a central role. Data exfiltration drives ransom surge The report reveals that both average and median ransom payments have risen markedly over the last...Read More
In a display of bureaucratic bravado, US law enforcement agencies say they’ve “disrupted” the BlackSuit ransomware gang (also known as Royal), freeing millions of dollars in virtual currency from its clutches. On July 24, the US Department of Homeland Security Investigations (HSI) – with help from the FBI, Secret Service, and the IRS — seized...Read More
TRM analysts have determined that Embargo is likely a successor, or a rebranded version, of the BlackCat ransomware group. A ransomware group going by the name Embargo has extorted roughly $34 million from companies in the United States, with hospitals and healthcare facilities among the top targets, according to research from blockchain intelligence company TRM Labs....Read More
