Topic: ransom demand
-
New Ransomware Encrypts Files with .enc, .iv, and .salt Extensions
A new ransomware strain encrypts files with .enc, .iv, and .salt extensions and demands Bitcoin payment to prevent public release of stolen data, claiming purely financial motives. The attackers emphasize their reputation for providing decryption tools and deleting data after payment to maintain ...
Read More » -
Salesforce Refuses to Pay Ransom in Massive Data Breach
Salesforce has refused to pay a ransom after a data breach allegedly exposed nearly one billion customer records, emphasizing its policy against negotiating with cybercriminals despite the risk of data exposure. The attack, initiated in May, involved English-speaking operatives tricking employees...
Read More » -
Unmasking the .7ga9lt4bur7 File: A Mimic/Pay2Key Ransomware Threat
A new ransomware threat uses the **.7ga9lt4bur7 extension** to encrypt files and demands payment to prevent stolen data from being published. Attackers exfiltrate sensitive information before encryption, including employee records and financial documents, risking severe fines and reputational dam...
Read More » -
Salesforce Blames Social Engineering for Ransomware Breaches
The hacker group Shiny Hunters claims to have stolen nearly one billion records from Salesforce and is demanding ransom from 39 companies, threatening to release the data by October 10, 2025, if not paid. Salesforce denies its platform was breached, attributing the data loss to social engineering...
Read More » -
Discord data breach exposes user support tickets to hackers
A security breach at Discord exposed sensitive user data after hackers infiltrated a third-party customer support provider, impacting users who had submitted support tickets. The attackers obtained personal details like names, email addresses, message content, and even official ID images, demandi...
Read More » -
Texas Sues PowerSchool Over Data Breach Affecting 62M Students
Texas is suing PowerSchool over a major data breach that exposed sensitive information of millions of students, alleging the company failed to protect data and misled customers about security. The breach occurred in December 2024 when an attacker used stolen credentials to access PowerSchool's po...
Read More » -
ELENOR-Crop Ransomware: Mimic & Pay2Key Threat Analysis
The ELENOR-Crop ransomware uses advanced encryption to lock victims out of their data and demands payment for decryption keys, requiring an understanding of its behavior for effective mitigation. Attackers communicate via a specific email, use misleadingly friendly messages to pressure victims in...
Read More » -
TaskUs Staff Implicated in Coinbase Data Breach, Court Docs Claim
A TaskUs employee was identified as the central figure in a major data breach at Coinbase, involving stolen customer data and social engineering attacks. The breach compromised nearly 70,000 users' personal information, leading to a $20 million ransom demand and significant financial losses. Task...
Read More » -
Hackers Breach Red Hat's GitLab Repositories
The Crimson Collective cybercrime group breached Red Hat's internal GitLab repositories, stealing proprietary data from over 28,000 repositories and potentially exposing sensitive client information and internal technical assets. Stolen materials include confidential items like login credentials,...
Read More »
