Latest Ransomware News and New File Extensions Cl0p-affiliated Activity: New Encrypted File Extension: Not specified. Attack Methods: Sending extortion emails directly to executives, claiming to have stolen sensitive data from their Oracle E-Business Suite systems. This is a data theft and extortion campaign rather than a traditional encryption attack. Targets: Organizations using Oracle E-Business Suite. …

Latest Ransomware News and New File Extensions Motility Software Solutions Ransomware Attack: New Encrypted File Extension: Not specified. Attack Methods: A ransomware attack that resulted in data exfiltration. Targets: Motility Software Solutions, a provider of dealer management software. The breach exposed the data of 766,000 customers. Decryption Status: Not specified in the report. Source: Data …

Latest Ransomware News and New File Extensions Akira: New Encrypted File Extension: Not specified. Attack Methods: Actively targeting SonicWall firewall customers by exploiting a known vulnerability. Targets: A wide range of industries including manufacturing (Cascade Pacific Pulp, Midwest Industries, Sinco, Pawling), aviation (Priester Aviation), construction (Burke Contracting), real estate (Sueba USA), retail/distribution (Tom Duffy Company, …

Latest Ransomware News and New File Extensions Akira Ransomware: New Encrypted File Extension: Not specified. Attack Methods: Breaching SonicWall SSL VPN devices, successfully logging into accounts even when they are protected with One-Time Password (OTP) Multi-Factor Authentication (MFA). It is suspected this is achieved using previously stolen OTP seeds. Targets: Organizations using vulnerable SonicWall SSL …

Latest Ransomware News and New File Extensions Akira Ransomware: New Encrypted File Extension: Not specified in the article. Attack Methods: Breaching SonicWall SSL VPN accounts, even those protected with OTP-based Multi-Factor Authentication (MFA). The method is suspected to involve the use of previously stolen OTP seeds. Targets: Organizations utilizing SonicWall SSL VPN devices. Decryption Status: …

Latest Ransomware News and New File Extensions Volvo Supplier Ransomware Attack: New Encrypted File Extension: Not specified. Attack Methods: Supply chain attack targeting a supplier. Targets: Volvo employees (via supplier breach), with three international vehicle manufacturers affected by similar attacks in the past month. Decryption Status: Not specified. Source: News article titled “Volvo Employee SSNs …

Latest Ransomware News and New File Extensions Fortra GoAnywhere MFT Vulnerability (CVE-2025-10035): New Encrypted File Extension: Not applicable (vulnerability exploitation). Attack Methods: A maximum severity (CVSS 10.0) authentication bypass vulnerability allows remote command injection. The flaw was exploited as a zero-day before public disclosure, with evidence of active exploitation a week prior. Targets: Users of …

Latest Ransomware News and New File Extensions Qilin: New Encrypted File Extension: Not specified in the articles. Attack Methods: Data exfiltration and public shaming on their leak site to extort victims. Targets: A wide range of industries including asset management (Podo Asset Management, HUB ASSET MANAGEMENT, Trustar Capital, Summit Asset Management), manufacturing (XC Associates, regalmold.com, …

Latest Ransomware News and New File Extensions Obscura Ransomware: New Encrypted File Extension: Not specified in the provided text. Attack Methods: Spreads from a victim’s compromised domain controller, indicating deployment after internal network compromise. Targets: Corporate networks. Decryption Status: No information available on decryption tools. Source: Source URL not provided. RTX Ransomware: New Encrypted File …

Latest Ransomware News and New File Extensions General Ransomware Attack: New Encrypted File Extension: Not specified. Attack Methods: A targeted attack on check-in and boarding systems, leading to operational disruptions. Targets: Multiple major European airports. Decryption Status: Not specified. Source: News article titled “Airport disruptions in Europe caused by a ransomware attack” Play Ransomware: New …