Tag: ransomware
-
Two US cybersecurity experts sentenced in ransomware case, third awaits July ruling
Two US security experts were sentenced to 4 years for helping ransomware attacks. A third accomplice pleaded guilty and awaits sentencing. Two US cybersecurity professionals, Ryan Goldberg and Kevin Martin, were sentenced to four years in prison for their role in supporting ransomware attacks. Both pleaded guilty to conspiracy involving extortion. A third individual, Angelo…
-
Critrical cPanel flaw mass-exploited in “Sorry” ransomware attacks
A new disclosed cPanel flaw tracked as CVE-2026-41940 is being mass-exploited to breach websites and encrypt data in “Sorry” ransomware attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critrical-cpanel-flaw-mass-exploited-in-sorry-ransomware-attacks/
-
Cyber incident responders who carried out ransomware attacks given 4-year sentences
Two cybersecurity incident responders who abused their positions to carry out covert ransomware attacks were sentenced to four years in prison. First seen on therecord.media Jump to article: therecord.media/ransomware-cyber-incident-responders
-
First reports come in of victims of critical cPanel vuln as ‘millions’ of sites potentially exposed
Exploitation was underway before patches landed, at least one victim reports ransomware demand First seen on theregister.com Jump to article: www.theregister.com/2026/05/01/critical_cpanel_vuln_hits_cisa/
-
Two American Cybersecurity Workers Jailed for BlackCat Ransomware Attacks
The cybersecurity workers used their knowledge and skills to conduct ransomware attacks for notorious gang, rather than protect victims against them First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/cybersecurity-workers-jailed/
-
Two American Cybersecurity Workers Jailed for BlackCat Ransomware Attacks
The cybersecurity workers used their knowledge and skills to conduct ransomware attacks for notorious gang, rather than protect victims against them First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/cybersecurity-workers-jailed/
-
Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks
The U.S. Department of Justice (DoJ) on Thursday announced the sentencing of two cybersecurity professionals to four years each in prison for their role in facilitating BlackCat ransomware attacks in 2023.Ryan Goldberg, 40, of Georgia, and Kevin Martin, 36, of Texas, were accused of deploying the ransomware against multiple victims located throughout the U.S. between…
-
US ransomware negotiators get 4 years in prison over BlackCat attacks
Two former employees of cybersecurity incident response companies Sygnia and DigitalMint were sentenced to four years in prison each for targeting U.S. companies in BlackCat (ALPHV) ransomware attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/us-ransomware-negotiators-get-4-years-in-prison-over-blackcat-attacks/
-
AI-Powered Ransomware Surge Hits 7,831 Victims Worldwide
Ransomware attacks surged dramatically in 2025, with global victims reaching 7,831. The sharp rise highlights how cybercrime has evolved into a highly organized, AI-driven ecosystem in which attackers operate at speed, with automation and scale. This surge is largely fueled by the widespread availability of AI-powered cybercrime tools such as WormGPT, FraudGPT, and BruteForceAI, which…
-
Former incident responders sentenced to 4 years in prison for committing ransomware attacks
Ryan Goldberg and Kevin Martin attacked five companies in 2023 and extorted nearly $1.3 million from one of their victims. First seen on cyberscoop.com Jump to article: cyberscoop.com/incident-responders-ryan-goldberg-kevin-martin-sentenced-ransomware/
-
Are Hospital Attacks ‘Terrorism,’ Patient Deaths ‘Murder’?
Experts Weigh How the US Could Raise the Stakes for Would-Be Attackers. As ransomware attacks on hospitals continue to disrupt patient care and sometimes contribute to serious patient harm, policymakers are increasingly debating whether the U.S. should treat such incidents as acts of terrorism – and even pursue homicide charges when a patient death occurs.…
-
Copy Fail (CVE-2026-31431): Frequently asked questions about Linux kernel privilege escalation vulnerability
Tags: access, ai, attack, browser, cisa, cloud, container, crypto, cve, cybersecurity, data, exploit, flaw, infrastructure, kev, linux, mitigation, ransomware, risk, tool, update, vulnerabilityA flaw in the Linux kernel present since 2017 allows a local user to gain root access on virtually every major Linux distribution. A public exploit is available and reported to work reliably. Key Takeaways CVE-2026-31431 is a high severity local privilege escalation vulnerability in the Linux kernel reportedly affecting virtually every major distribution released…
-
Ransomware Victims up 389%, TTE in Less Than Two Days: How Can Defenders Stay Ahead?
Agentic AI’s impact on ransomware”, it’s execution, its success and even who gets to play, is being widely felt. And we’re just getting started. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/ransomware-victims-up-389-tte-in-less-than-two-days-how-can-defenders-stay-ahead/
-
Ransomware Attacks on Schools: 4 Warning Signs IT Teams Shouldn’t Ignore
Ransomware attacks are increasingly threatening to K12 schools, with districts of all sizes becoming prime targets for cybercriminals. These school ransomware attacks don’t just impact IT systems. They can shut down classrooms, disrupt learning for days or even weeks, and expose sensitive student and staff data. The financial and operational costs of recovery can be…
-
VECT Ransomware: Warum die Zahlung des Lösegelds technisch zwecklos ist
Tags: ransomwareDie VECT-Ransomware zerstört Dateien über 128 KB dauerhaft. Wer zahlt, verliert Geld und Daten. Eine Rettung ist technisch unmöglich. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/vect-ransomware-loesegeld
-
VECT Ransomware: Warum die Zahlung des Lösegelds technisch zwecklos ist
Tags: ransomwareDie VECT-Ransomware zerstört Dateien über 128 KB dauerhaft. Wer zahlt, verliert Geld und Daten. Eine Rettung ist technisch unmöglich. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/vect-ransomware-loesegeld
-
Dutch Health Tech Firm ChipSoft Confirms Destruction of Stolen Patient Data
The Cyber Express previously reported the ChipSoft cyberattack, in which ransomware actors stole patient data. Now, reports have surfaced from the Dutch medical software provider, noting that the compromised data has been destroyed, though key details about the incident remain undisclosed. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/chipsoft-cyberattack-stolen-data-destroyed/
-
Ransomware-Hotspot: Deutschland als Top-Ziel für Erpresser
First seen on datensicherheit.de Jump to article: www.datensicherheit.de/ransomware-hotspot-deutschland-top-ziel-erpresser
-
Vect 2.0 Ransomware Acts as Wiper, Thanks to Design Error
The emerging ransomware has been deployed against victims of the TeamPCP supply chain attacks, but organizations should think twice before paying for a decryptor. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/vect-ransomware-wiper-design-error
-
Buggy Vect ransomware is effectively a data wiper, researchers find
Due to a bug in the ransomware, affiliates of the Vect Ransomware-as-a-Service operation are irretrievably encrypting victims’ data. >>Victims who pay the ransom … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/29/vect-ransomware-bug/
-
Critical Flaw Turns Vect Ransomware into Data Destroying Wiper
The Vect 2.0 ransomware wipes large files instead of merely encrypting them, making recovery impossible even for the attackers First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/critical-flaw-vect-ransomware-data/
-
Critical Flaw Turns Vect Ransomware into Data Destroying Wiper
The Vect 2.0 ransomware wipes large files instead of merely encrypting them, making recovery impossible even for the attackers First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/critical-flaw-vect-ransomware-data/
-
Critical Flaw Turns Vect Ransomware into Data Destroying Wiper
The Vect 2.0 ransomware wipes large files instead of merely encrypting them, making recovery impossible even for the attackers First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/critical-flaw-vect-ransomware-data/
-
VECT 2.0 Ransomware Wipes Large Files Across Windows, Linux ESXi
The “new” VECT 2.0 ransomware is essentially a cross”‘platform data wiper that permanently destroys most enterprise files rather than encrypting them for recovery. For any file larger than 131,072 bytes (128 KB), VECT processes four separate chunks using four different randomly generated ChaCha20″‘IETF nonces, but only writes the last nonce to disk at the end…
-
Entschlüsselung unmöglich: Ransomware-Panne führt zu Datenverlust
Tags: ransomwareWer der Vect-Ransomware zum Opfer fällt, sollte nicht mit einer Datenrettung per Lösegeldzahlung rechnen. Ein Bug vernichtet einen Großteil der Daten. First seen on golem.de Jump to article: www.golem.de/news/datenverlust-durch-bug-ransomware-panne-macht-verschluesselte-daten-unbrauchbar-2604-208141.html
-
Betting on Cybercrime Prediction Markets and Hacking
Cybercriminals are evolving from stealing data to “shaping the future” by leveraging prediction markets. By exploiting early access to disclosures, manipulating sensor data, or timing ransomware leaks to coincide with market bets, attackers can transform illegal access into guaranteed financial gains. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/betting-on-cybercrime-prediction-markets-and-hacking/
-
Vect 2.0 RaaS Expands Attacks Across Windows, Linux, and ESXi
Vect 2.0 Ransomware”‘as”‘a”‘Service (RaaS) operation is rapidly evolving into a multi”‘platform threat that can encrypt Windows, Linux, and VMware ESXi environments across modern hybrid infrastructures. The group runs a classic affiliate model, renting out its ransomware and TOR”‘based infrastructure to partners in exchange for a share of ransom payments. Its operators are strongly suspected to be…
-
Vect ransomware actually destructive wiper malware
Analysis of a new form of ransomware called Vect has uncovered a serious flaw that breaks its core functionality and turns it from a locker to a wiper. First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366642421/Vect-ransomware-actually-destructive-wiper-malware
-
Broken VECT 2.0 ransomware acts as a data wiper for large files
Researchers are warning that the VECT 2.0 ransomware has a problem in the way it handles encryption nonces that leads to permanently destroying larger files rather than encrypt them. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/broken-vect-20-ransomware-acts-as-a-data-wiper-for-large-files/
-
Feuding Ransomware Groups Leak Each Other’s Data
When 0APT and KryBit attacked each other, they exposed infrastructure and operational data, giving defenders rare insight into ransomware operations. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/feuding-ransomware-groups-leak-data