Ransomware group Embargo has pulled in at least $34.2 million in various tokens since its emergence in April 2024, according to TRM Labs. The blockchain analytics firm says the ransomware group’s infrastructure and coding overlaps suggests it may be a likely rebranding of the defunct BlackCat (ALPHV) operation. The group operates a ransomware-as-a-service model, providing...Read More
Cybersecurity firm Profero cracked the encryption of the DarkBit ransomware gang’s encryptors, allowing them to recover a victim’s files for free without paying a ransom. This occurred in 2023 during an incident response handled by Profero experts, who were brought in to investigate a ransomware attack on one of their clients, which had encrypted multiple...Read More
North Korean hackers ScarCruft shift from spying to ransomware, using VCD malware in phishing attacks, targeting South Korea with advanced tools. Discover how this new malware marks a shift from espionage to financially motivated cyberattacks. A well-known North Korean hacking group, ScarCruft, is changing its methods, adding a new type of attack to its usual...Read More
Aug 11, 2025Ravie Lakshmanan This week, cyber attackers are moving quickly, and businesses need to stay alert. They’re finding new weaknesses in popular software and coming up with clever ways to get around security. Even one unpatched flaw could let attackers in, leading to data theft or even taking control of your systems. The clock...Read More
It started like a domino effect. One by one, the biggest names in ransomware began to vanish in Q2. From LockBit, once considered the most active and resilient ransomware gang, its empire began to unravel under the pressure of global law enforcement. Then, almost in sequence, other major players, 8Base, RansomHub, and BianLian shut down...Read More
Australian and New Zealand organisations have experienced some of the most severe waves of ransomware attacks globally, according to new research from Semperis, with a substantial proportion facing repeated targeting and rising threats to their executives. The 2025 Ransomware Risk Report from Semperis draws on a survey of nearly 1,500 organisations worldwide, capturing the escalation...Read More
(Screencapture from Yes24 website) Yes24, the country’s largest online bookseller and a major ticketing platform, experienced another cyberattack early Monday, causing its website and app to go offline just two months after a major ransomware attack. Service was restored by the afternoon. A Yes24 official confirmed that the early-morning ransomware attack disabled user access. “We...Read More
MedusaLocker ransomware group is looking for pentesters Pierluigi Paganini August 11, 2025 MedusaLocker ransomware gang announced on its Tor data leak site that it is looking for new pentesters. MedusaLocker is a ransomware strain that was first observed in late 2019, it encrypts files on infected systems and demands a ransom, usually in cryptocurrency, for...Read More
Exclusive: World Leaks ransomware gang claims hack of defence contractor L3Harris A company in the running to help build the United States’ Golden Dome missile defence system has been impacted by an alleged data breach. American defence contractor L3Harris has been listed as a victim on ransomware gang World Leaks’ darknet leak site. The hackers...Read More
