Collecting Cyber-News from over 60 sources

Tag: ransom

Prinz Eugen Ransomware Hits Recent Files First and Skips Ransom Notes

Jun 22, 2026 9:34 PM

Tags: backup, endpoint, incident response, ransom, ransomware, windows

Prinz Eugen ransomware prioritizes recently modified files and leaves no ransom note on disk, creating new pressure on backup windows, endpoint alerts, and incident response playbooks. The post Prinz Eugen Ransomware Hits Recent Files First and Skips Ransom Notes appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-prinz-eugen-ransomware-recent-files/
New Prinz Eugen ransomware prioritizes recent files for encryption

Jun 20, 2026 6:34 PM

Tags: encryption, ransom, ransomware

A new ransomware operation named ‘Prinz Eugen’ prioritizes recently modified files for encryption and leaves no ransom note on the system. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-prinz-eugen-ransomware-prioritizes-recent-files-for-encryption/
INC Ransomware Uses Double Extortion and Printer Ransom Notes to Pressure Victims

Jun 19, 2026 9:34 PM

Tags: breach, cyber, data, extortion, group, ransom, ransomware, tactics

INC has matured from an emerging RaaS operation into one of 2026’s most active ransomware families, claiming more than 800 victims since 2023 and capitalizing on disruption among competitors to expand its affiliate base. The group’s recent campaigns demonstrate both incremental tooling refinement and novel pressure tactics: double extortion of stolen data combined with automated…
FulcrumSec Targets Novo Nordisk, Leaks Clinical and Research Data

Jun 17, 2026 12:02 PM

Tags: ai, breach, data, data-breach, extortion, group, leak, ransom, theft

FulcrumSec leaked data stolen from Novo Nordisk, claiming to have exfiltrated 1.3TB, including clinical records and AI research assets. On June 15, 2026, a data-theft extortion group calling itself FulcrumSec began leaking files from Novo Nordisk, the Danish maker of Ozempic and Wegovy, after the company refused a $25 million ransom demand. The attackers claimed…
iRhythm Hit by Cyberattack, Patient Data Stolen and Ransom Demanded

Jun 16, 2026 10:03 PM

Tags: breach, cyberattack, data, healthcare, monitoring, ransom, update

iRhythm disclosed a cyberattack via third-party apps where patient and proprietary data was stolen, followed by a ransom demand. iRhythm Technologies is a U.S.-based digital healthcare company specializing in remote cardiac monitoring and arrhythmia detection. Its best-known product is the Zio, a wearable patch that continuously records a patient’s heart rhythm for up to several…
Silent Ransom Group Targets US Legal Firms With Voice Phishing and Data Theft Extortion

Jun 16, 2026 4:01 PM

Tags: cyber, data, extortion, finance, group, office, phishing, ransom, service, social-engineering, theft, tool

A concentrated data theft extortion campaign by UNC3753 also reported as Luna Moth, Chatty Spider, and Silent Ransom Group targeting dozens of U.S. professional, legal, and financial services firms. The cluster’s hallmark is fast, human-centric intrusions that combine voice phishing (vishing), social engineering, abuse of legitimate remote support tools, and in some cases physical office…
Silent Ransom Group Targets US Legal Firms With Voice Phishing and Data Theft Extortion

Jun 16, 2026 4:01 PM

Tags: cyber, data, extortion, finance, group, office, phishing, ransom, service, social-engineering, theft, tool

A concentrated data theft extortion campaign by UNC3753 also reported as Luna Moth, Chatty Spider, and Silent Ransom Group targeting dozens of U.S. professional, legal, and financial services firms. The cluster’s hallmark is fast, human-centric intrusions that combine voice phishing (vishing), social engineering, abuse of legitimate remote support tools, and in some cases physical office…
Nintendo Alleged Data Breach: Threat Actor Demands $2M Ransom

Jun 16, 2026 1:01 AM

Tags: breach, data, data-breach, extortion, ransom, threat

Nintendo faces an alleged data extortion incident involving HR records, internal reports, and potential exposure of third-party vendors. The post Nintendo Alleged Data Breach: Threat Actor Demands $2M Ransom appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-nintendo-alleged-data-leak-third-party-risk/
Extradited Ukrainian Man Admits Role in Conti Ransomware Attacks

Jun 13, 2026 5:02 PM

Tags: attack, fraud, ransom, ransomware, ukraine

Ukrainian national Oleksii Lytvynenko has pleaded guilty in the US to wire fraud conspiracy linked to Conti ransomware, which hit more than 1,000 victims and generated at least $150 million in ransom payments. First seen on hackread.com Jump to article: hackread.com/extradited-ukrainian-admits-conti-ransomware-attacks/
Silent Ransom Group: what you need to know

Jun 12, 2026 7:04 PM

Tags: extortion, group, office, phone, ransom

Most extortion gangs hide behind a keyboard. Silent Ransom Group will phone your staff pretending to be IT support – and if that fails, send someone to your office in person to plug in a USB stick. First seen on fortra.com Jump to article: www.fortra.com/blog/silent-ransom-group-what-you-need-know
Silent Ransom Group Hits US Law Firms in Escalating Extortion Attacks

Jun 8, 2026 11:43 PM

Tags: attack, data, extortion, group, law, office, ransom

The financially motivated group is combining vishing, IT impersonation, and in-person office intrusions to steal data and extort victims. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/silent-ransom-us-law-firms-extortion-attacks
Silent Ransom Group Uses Fast Flux Botnet to Hide Law Firm Leak Sites

Jun 8, 2026 4:42 PM

Tags: botnet, cybersecurity, data, group, law, leak, ransom, theft

Cybersecurity firm Resecurity reports Silent Ransom Group is using a fast flux botnet to hide data leak sites while targeting law firms with theft and vishing. First seen on hackread.com Jump to article: hackread.com/silent-ransom-group-fast-flux-botnet-leak-sites/
Hacked, leaked, and held for ransom: the worst breaches of 2026 so far

Jun 7, 2026 6:42 PM

Tags: breach, data, data-breach, hacking, ransom, security-incident

From a massive DOGE data breach and the hacking of critical energy and water systems to the hack of an FBI surveillance system, here are the most damaging security incidents and data breaches of 2026. First seen on techcrunch.com Jump to article: techcrunch.com/2026/06/07/the-worst-hacks-and-breaches-of-2026-so-far/
Silent Ransom Group targets law firms with fake IT support calls

Jun 7, 2026 4:42 PM

Tags: attack, cybersecurity, data, extortion, group, law, ransom, service, social-engineering, theft

The Silent Ransom Group extortion gang is actively targeting U.S. law firms and professional services organizations in social engineering attacks that often lead to data theft within hours of initial contact, according to a new report by cybersecurity firm Mandiant. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/silent-ransom-group-targets-law-firms-with-fake-it-support-calls/
UNC3753 Targets US Law Firms with Vishing, RMM Tools, and Physical Break-Ins

Jun 6, 2026 11:43 AM

Tags: cyber, finance, google, group, intelligence, law, mandiant, monitoring, office, phishing, ransom, service, threat, tool

Threat cluster UNC3753, widely tracked as Silent Ransom Group or Luna Moth, is actively targeting professional, legal, and financial services in the United States. According to Mandiant’s Google Threat Intelligence Group (GTIG), this financially motivated campaign leverages a highly effective combination of voice phishing, remote monitoring and management abuse, and unprecedented physical office intrusions. Attackers…
Silent Ransom Group (SRG): Switching To DNS Fast Flux Infrastructure

Jun 5, 2026 8:43 PM

Tags: attack, cybersecurity, data-breach, dns, group, infrastructure, intelligence, law, malicious, network, ransom

Researchers exposed the Silent Ransom Group ‘s Fast Flux infrastructure as the FBI warns of ongoing attacks targeting U.S. law firms and businesses. Resecurity uncovered the Silent Ransom Group (SRG)’s Fast Flux network infrastructure and shares available intelligence with the cybersecurity community to disrupt their malicious activities and enable ISP/DNS providers to counter this threat.…
Google and FBI warn of ransomware group that sends fake IT workers to hack victims in person

Jun 5, 2026 6:42 PM

Tags: access, breach, cybercrime, data, google, group, law, office, ransom, ransomware

Cybercriminals, part of a gang known as Silent Ransom Group, have sent people pretending to be IT support employees to law firms’ offices, where the criminals have stolen data using USB drives or remote access tools. First seen on techcrunch.com Jump to article: techcrunch.com/2026/06/05/google-and-fbi-warn-of-ransomware-group-that-sends-fake-it-workers-to-hack-victims-in-person/
Silent Ransom Group (SRG): Uncovering DNS Fast Flux Infrastructure

Jun 5, 2026 5:42 PM

Tags: dns, group, infrastructure, ransom

First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/silent-ransom-group-srg-uncovering-dns-fast-flux-infrastructure
Silent Ransom Group Targets Law Firms With IT Impersonation Attacks

Jun 2, 2026 9:42 PM

Tags: group, law, ransom, social-engineering, tool

Silent Ransom Group is using IT impersonation and trusted tools to target law firms in evolving social engineering attacks. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/silent-ransom-group-targets-law-firms-with-it-impersonation-attacks/
Charter confirms data breach after ShinyHunters extortion threat

May 26, 2026 11:00 PM

Tags: breach, communications, data, data-breach, extortion, group, leak, ransom, threat

U.S. telecommunications giant Charter Communications has confirmed it suffered a data breach after the ShinyHunters extortion group threatened to leak stolen data unless a ransom is paid. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/charter-confirms-data-breach-after-shinyhunters-extortion-threat/
The Hidden Ransomware Economy Running on Exposed Databases

May 26, 2026 9:01 PM

Tags: attack, data-breach, extortion, leak, ransom, ransomware

A 5-year study on the Ransomware Economy found that 30,515 exposed databases were hit by ransom attacks, causing massive damage despite victims never paying. Database extortion doesn’t look like the ransomware stories that usually grab headlines. There’s no slick branding, no leak-site countdown, no gang posting memes on Telegram. In most cases, there’s just a…
NightSpire Ransomware Abuses RDP for Stealthy Persistence

May 26, 2026 1:00 PM

Tags: cyber, data, extortion, leak, malware, ransom, ransomware, tactics, threat

NightSpire has quickly emerged as a significant ransomware threat since its discovery in early 2025, combining classic double-extortion tactics with stealthy intrusion techniques. The malware not only encrypts victim data but also exfiltrates sensitive files, threatening to publish them on a Tor-based leak site if ransom demands are not met. In just a three-month window…
Instructure cyberattack reignites ransom payment debate

May 20, 2026 4:00 PM

Tags: breach, business, ciso, cyberattack, cybercrime, data, ransom

Instructure struck a deal to recover its stolen data — likely paying a hefty ransom. For CISOs, deciding whether to negotiate with cybercriminals should come down to business risk. First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366642963/Instructure-cyberattack-reignites-ransom-payment-debate
FBI warns students and staff that ShinyHunters may come knocking after Canvas breach

May 20, 2026 11:00 AM

Tags: attack, breach, extortion, ransom

Having receive a ransom payment for its attack on Canvas, ShinyHunters and other extortion gangs are only likely to be further incentivised to launch similar attacks in future. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/fbi-shinyhunters-canvas-breach
Grafana Rejects Ransom Demand After GitHub Breach Exposes Codebase Theft

May 19, 2026 9:00 PM

Tags: breach, data, data-breach, extortion, github, ransom, theft

Grafana refused an extortion demand after attackers used a stolen GitHub token to download code, with no customer data exposed so far. The post Grafana Rejects Ransom Demand After GitHub Breach Exposes Codebase Theft appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-grafana-github-token-codebase-breach/
Grafana refuses to pay ransom after codebase theft

May 18, 2026 9:00 PM

Tags: hacker, ransom, theft

On Saturday night, the company released a statement confirming the incident and outlining their decision not to pay a ransom issued by the hackers behind the attack. First seen on therecord.media Jump to article: therecord.media/grafana-refuses-to-pay-ransom-codebase-theft
âš¡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More

May 18, 2026 6:00 PM

Tags: ai, cisco, cloud, control, data, data-breach, exploit, flaw, leak, mail, network, ransom, worm, zero-day

Monday opens with a trust problem. A mail server flaw is under active use. A network control system was targeted. Trusted packages were poisoned. A fake model page pushed a stealer. Then came the familiar ransom claim: the data was returned and deleted.The pattern is clear. One weak dependency can leak keys. One leaked key…
Open source tool maker Grafana Labs says hackers stole its code, refuses to pay ransom

May 18, 2026 4:01 PM

Tags: hacker, open-source, ransom, tool

The open source project said hackers stole its codebase and threatened to publish its source code if the company did not pay. First seen on techcrunch.com Jump to article: techcrunch.com/2026/05/18/open-source-tool-maker-grafana-labs-says-hackers-stole-its-code-refuses-to-pay-ransom/
Grafana Says It Rejected Ransom Demand After Source Code Theft

May 17, 2026 1:00 PM

Tags: data, github, hacker, ransom, theft

Grafana says hackers stole its source code after accessing a GitHub token, but no customer data or systems were affected. First seen on hackread.com Jump to article: hackread.com/grafana-source-code-theft-rejected-ransom-demand/
Canvas hack: is it ever a good idea to pay a ransom, and what happens to the data?

May 17, 2026 5:01 AM

Tags: breach, cyber, data, hacker, login, ransom, ransomware

Businesses are advised against paying but many are prepared to deal to protect users’ privacyAfter a week of outages, hundreds of millions of students’ data stolen, delayed assignment due dates and school login pages being defaced by hackers, the US tech firm Instructure which operates the education platform Canvas, used by education providers worldwide announced…