Business Wire

Sygnia First to Link Two Ransomware Groups to Larger Chinese Threat Actor, Dubbed ‘Emperor Dragonfly’

In a new report, Sygnia’s Incident Response (IR) team connects Night Sky and Cheerscrypt activity to one unified threat group targeting Windows and VMWare ESXi environments TEL AVIV, Israel & NEW YORK ...
CSOonline

New ransomware Yurei adopts open-source tools for double-extortion campaigns

The new group relies on data theft and encryption, but coding errors in its ransom note routine expose weaknesses that defenders can exploit. A new ransomware group called Yurei has surfaced, adopting ...
Bleeping Computer

U.S. seizes $2.8 million in crypto from Zeppelin ransomware operator

The U.S. Department of Justice (DoJ) announced the seizure of more than $2.8 million in cryptocurrency from suspected ransomware operator Ianis Aleksandrovich Antropenko. Antropenko, indicted in Texas ...
Dark Reading

Emerging Yurei Ransomware Claims First Victims

A new ransomware operator has emerged that relies on open source malware to launch double-extortion attacks that have claimed several victims. However, its ransomware has a flaw that gives victims a ...
Bleeping Computer

Hackers now use Velociraptor DFIR tool in ransomware attacks

Threat actors have started to use the Velociraptor digital forensics and incident response (DFIR) tool in attacks that deploy LockBit and Babuk ransomware. Cisco Talos researchers assess with medium ...