Evil Corp’s deep ties with Russia and NATO member attacks exposed

October 1, 2024 at 11:42AM Evil Corp, a notorious cybercrime organization, is believed to have had an exceptionally close relationship with the Russian state, which allegedly ordered the group to carry out cyberattacks on NATO members. The group’s leader, Maksim Yakubets, is suspected to have strong ties to the Russian intelligence services, with support from … Read more

NCA unmasks man it suspects is both ‘Evil Corp kingpin’ and LockBit affiliate

October 1, 2024 at 10:12AM The National Crime Agency (NCA) revealed the identification of Aleksandr Ryzhenkov, a high-ranking member of Evil Corp believed to be a LockBit affiliate known as “Beverley.” The unmasking follows the disruption of 194 LockBit affiliates, with Ryzhenkov allegedly responsible for 60 attacks totaling $100 million in Bitcoin. NCA continues its … Read more

LockBit boasts of ransoming IRS-authorized eFile.com

September 18, 2024 at 04:19PM LockBit ransomware gang claims to have breached eFile.com, an IRS-authorized tax return e-filer with no affiliation to the IRS. The Register has not confirmed the breach. If true, it poses a risk to personal and financial data. Earlier security issues were reported in March 2023. Late filers are urged to … Read more

Major sales and ops overhaul leads to much more activity … for Meow ransomware gang

September 11, 2024 at 02:47PM The Meow ransomware group has gained momentum, claiming the second most active gang spot in global ransomware attacks. The group has shifted its focus from encrypting files to selling stolen data, adopting a new tactic in the cybercrime landscape. Meanwhile, RansomHub continues to dominate the rankings with 15 percent of … Read more

Understanding the ‘Morphology’ of Ransomware: A Deeper Dive

August 22, 2024 at 10:39AM The WithSecure’s Ransomware Landscape report for H1 2024 reveals the underlying morphology shaping the visible landscape of ransomware attacks. While leak sites and public reports provide growth insights and sector-specific attack trends, the report also discusses the changing lexicography of ransomware, law enforcement actions’ impact, and the rebranding and migration … Read more

Ransomware in 2024: More Attacks, More Leaks, and Increased Sophistication

August 7, 2024 at 08:54AM The Rapid7 Ransomware Radar Report 2024 reveals an alarming increase in ransomware attacks and leaks, surpassing 2023 levels. The report points to a rising threat of ransomware, particularly through the double extortion of encryption and data exfiltration. Additionally, it highlights the activities of key ransomware groups and emphasizes the critical … Read more

Five months after takedown, LockBit is a shadow of its former self

July 31, 2024 at 10:23AM LockBit’s ransomware operation, led by leader LockbitSupp, suffered a significant blow following Operation Cronos. Despite efforts to rebuild and operate, LockBit’s reputation and impact have dwindled. With the mass exodus of affiliates and diminishing operations, the future of LockBit and its leader remains uncertain amidst changing dynamics in the ransomware … Read more

Company Paid Record-Breaking $75 Million to Ransomware Group: Report

July 31, 2024 at 06:36AM Zscaler’s ThreatLabz 2024 Ransomware Report reveals a company paid a record $75 million ransom to Dark Angels in early 2024, nearly double the highest known payment. An 18% increase in ransomware attacks was reported from April 2023 to April 2024. The report advises against paying ransom and highlights Dark Angels’ … Read more

Two Members of LockBit Ransomware Group Plead Guilty in US Court

July 22, 2024 at 11:36AM Two members of the LockBit gang pleaded guilty in the US for their involvement in deploying ransomware against organizations globally and in the US. The gang resumed operations after a disruption, becoming the most active ransomware gang in May. The US seeks information on the alleged mastermind and has announced … Read more

Two Russian Nationals Plead Guilty in LockBit Ransomware Attacks

July 19, 2024 at 09:54AM Two Russian nationals plead guilty in U.S. court for their involvement in the LockBit ransomware scheme, facilitating attacks worldwide. Ruslan Magomedovich Astamirov and Mikhail Vasiliev were accused of deploying the ransomware, demanding and receiving millions in ransom payments. Their sentencing is set for January 8, 2025. This comes after the … Read more