But for the researchers at Group-IB, the old-school encryption-only model is not the most notable aspect of the DeadLock ...

Abstract "Double-extortion" ransomware attacks not only encrypt systems but also steal sensitive data. Traditional backups ...

New research from Trellix detailed that CrazyHunter ransomware has emerged as a serious and escalating threat, underscoring the growing sophistication of modern cybercriminal operations.

A new ransomware crew dubbed Codefinger targets AWS S3 buckets and uses the cloud giant's own server-side encryption with ...

While ‘traditional’ ransomware attacks remain stable, some gangs are shifting towards exploiting zero-days and supply chains to go straight to stealing data ...

DeadLock ransomware relies on Polygon smart contracts to spin proxy servers to produce a nearly unshuttable infrastructure.

Cyber extortion, by contrast, now encompasses a much broader set of coercive tactics, including data theft and leak threats, ...

When ransomware strikes, most organizations spring into action as if they’re responding to a classic crime scene: Tape off the perimeter, start the restoration process, and try to regain access to ...

SSE-C stands (well, stood) for “Server Side Encryption- Customer-provided keys”. It allowed you to provide an encryption key ...

Only a quarter (24%) of ransomware incident involved the encryption of data. Data was stolen and either leaked or retained in 54% of cases analyzed. These multidimensional tactics appear largely ...

To no surprise, ransomware continued to disrupt organizations across every sector in 2025. Although each incident looked different, most shared the same root causes: weak access controls, overly ...

Ransomware attacks have increasingly become a top concern for businesses worldwide, targeting organizations of all sizes and industries. Recent research by Object First has highlighted key ...