Skip to main content
← All Tags

Ransomware

14 articles in this category

AI NewsRansomwareCybersecurity

Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools

Reynolds ransomware embeds a vulnerable BYOVD driver to kill EDR defenses, signaling advanced evasion in ransomware attacks with a 5.7 CVSS score.

Read more
AI NewsCybersecurityRansomware

Warlock Ransomware Breaches SmarterTools Through Unpatched SmarterMail Server

Warlock ransomware breached SmarterTools via unpatched SmarterMail, exploiting critical flaws to access Windows systems and deploy encryption payloads, affecting 12 Windows servers and hosted customers using SmarterTrack

Read more
AI NewsCybersecurityRansomware

Warlock Gang Breaches SmarterTools Via SmarterMail Bugs

The Warlock ransomware group breached SmarterTools through a vulnerability in SmarterMail, affecting 30 servers and virtual machines.

Read more
AI NewsCybersecurityRansomware

CISA's Hidden Ransomware Updates to KEV Catalog

A third of the 'flipped' CVEs affect edge devices, leading to increased ransomware risk with 59 vulnerabilities updated in 2025.

Read more
AI NewsRansomwareCybersecurity

‘Sicarii’ Ransomware Decryption Fails Due to Poor Coding and Potential AI Use

The Sicarii ransomware strain exhibits a fatal flaw in its decryption process, rendering data irrecoverable even after ransom payment, due to key generation issues.

Read more
AI NewsCybersecurityRansomware

Osiris Ransomware Leverages POORTRY Driver in Novel BYOVD Attack

The newly discovered Osiris ransomware strain utilized a custom POORTRY driver in a Bring Your Own Vulnerable Driver (BYOVD) attack, resulting in data theft and security tool disabling in November 2025.

Read more
AI NewsCybersecurityRansomware

Cybersecurity Predictions 2026: Separating Signal from Noise

Bitdefender webinar highlights the shift from speculative cybersecurity threats to targeted ransomware and internal AI risks needing immediate attention.

Read more
AI NewsCybersecurityRansomware

US Cyber Pros Plead Guilty Over BlackCat Ransomware Activity

Two US cybersecurity professionals pleaded guilty to ransomware activity as ALPHV/BlackCat affiliates in 2023, highlighting an insider threat.

Read more
AI NewsCybersecurityRansomware

Gainsight Expands Impacted Customer List Following Salesforce Security Alert

Gainsight reveals expanded breach affecting 'a handful' of customers linked to ShinyHunters' AI-tuned ShinySp1d3r ransomware.

Read more
AI NewsCybersecurityRansomware

Qilin Ransomware 'Korean Leaks' Campaign Compromises 28 South Korean Victims

Bitdefender attributes a large-scale data heist impacting 28 South Korean organizations to the Qilin ransomware group, resulting in 2TB of stolen data.

Read more
AI NewsCybersecurityRansomware

Ransomware's Fragmentation Reaches a Breaking Point While LockBit Returns

Ransomware hit record highs in Q3 2025 with 85 active groups and LockBit 5.0’s return.

Read more
AI NewsCybersecurityRansomware

U.S. Prosecutors Indict Cybersecurity Insiders for BlackCat Ransomware Attacks

Federal prosecutors in the U.S. have indicted three cybersecurity professionals for orchestrating BlackCat ransomware attacks on five companies between May and November 2023, highlighting the risks of insider threats in the cybersecurity sector.

Read more
AI NewsCyber SecurityRansomware

Russian Ransomware Gangs Weaponize Open-Source AdaptixC2 for Advanced Attacks

Open-source AdaptixC2, originally designed for ethical hacking, is now being exploited by Russian ransomware groups for malicious activities, raising cybersecurity concerns.

Read more
AI NewsCyber SecurityRansomware

Qilin Ransomware Combines Linux Payload With BYOVD Exploit in Hybrid Attack

Qilin ransomware, a Russian-speaking threat group, has targeted 84 victims monthly since 2025, using RMM tools, BYOVD exploits, and backup system breaches to deploy hybrid attacks across multiple sectors.

Read more