Latest Ransomware News and New File Extensions Yurei Ransomware: New Encrypted File Extension: Not specified. Attack Methods: Utilizes a modified version of the Prince-Ransomware binary to encrypt data and extort victims. Targets: General organizations; has claimed its first victims. Decryption Status: Partial data recovery is possible due to a flaw in the malware, but the …

Latest Ransomware News and New File Extensions KillSec: New Encrypted File Extension: Not specified. Attack Methods: Data exfiltration and extortion, including a supply chain attack targeting a healthcare technology provider. Targets: A Brazilian healthcare software provider, “Allure Clinics,” and property management software “HappyTenant.” Decryption Status: Not specified; the primary focus appears to be on data …

Latest Ransomware News and New File Extensions FBI Warning (UNC6040 and UNC6395): New Encrypted File Extension: Not applicable (focus is on data theft and extortion). Attack Methods: Compromising organizations’ Salesforce environments to exfiltrate data for extortion purposes. Targets: Organizations using Salesforce. Decryption Status: Not applicable. Source: [No URL provided, based on article “FBI warns of …

Latest Ransomware News and New File Extensions UNC6040 and UNC6395 (Data Extortion Groups): New Encrypted File Extension: Not applicable (data theft) Attack Methods: Targeting and compromising Salesforce cloud platforms to conduct data theft and extortion. Targets: Organizations that utilize Salesforce. Decryption Status: Not applicable as the primary goal is data theft, not encryption. Source: URL …

Latest Ransomware News and New File Extensions HybridPetya: New Encrypted File Extension: Not specified in the articles. Attack Methods: Exploits vulnerability CVE-2024-7344 to bypass the UEFI Secure Boot mechanism, allowing it to install a malicious application on the EFI System Partition. It resembles the behavior of the infamous Petya/NotPetya malware. Targets: Systems using UEFI Secure …

Latest Ransomware News and New File Extensions Akira Ransomware: New Encrypted File Extension: Not specified. Attack Methods: Actively exploiting a critical access control vulnerability (CVE-2024-40766) in SonicWall SSL VPN devices to gain unauthorized initial access. Targets: Organizations using vulnerable SonicWall appliances. Recent claimed victims span multiple industries, including manufacturing (Standard Iron & Wireworks), biotechnology (Fluxergy), …

Latest Ransomware News and New File Extensions Akira Ransomware: New Encrypted File Extension: Not specified in the articles. Attack Methods: Actively exploiting flaws and misconfigurations in SonicWall SSL VPN appliances for initial access into corporate networks. Targets: Organizations using vulnerable SonicWall devices. Recently announced victims include companies in architectural woodwork, transport/trucking, homebuilding, and food distribution. …

Latest Ransomware News and New File Extensions Play Ransomware: New Encrypted File Extension: Not specified in the provided articles. Attack Methods: Not specified in the provided articles. Targets: Numerous U.S. companies including HD Media Systems, Mayors Machine Works, JIT Energy Services, Anderson Aluminum, Royal Machine & Tool, Reliable Roofing, and others. Decryption Status: No known …

Latest Ransomware News and New File Extensions Lovesac / Unnamed Ransomware Group: New Encrypted File Extension: Not specified. Attack Methods: Details of the cybersecurity incident were not disclosed. Targets: Lovesac, an American furniture brand, and its customers. Decryption Status: Not specified. Source: News Article – “Lovesac confirms data breach after ransomware attack claims” Yurei Ransomware: …

Latest Ransomware News and New File Extensions Alphalocker: New Encrypted File Extension: Not specified. Attack Methods: Data exfiltration and public extortion via leak site publications. The group claims to have stolen 90 GB from Integrated Pathology Services and ~200 GB from Gazomet/Cgas. Targets: Integrated Pathology Services (Healthcare), Gazomet.pl & Cgas.pl (Energy/Utilities). Decryption Status: No decryption …