Topic: ransom demand
-
New Ransomware Encrypts Files with .enc, .iv, and .salt Extensions
A new ransomware strain encrypts files with .enc, .iv, and .salt extensions and demands Bitcoin payment to prevent public release of stolen data, claiming purely financial motives. The attackers emphasize their reputation for providing decryption tools and deleting data after payment to maintain ...
Read More » -
Unmasking the .7ga9lt4bur7 File: A Mimic/Pay2Key Ransomware Threat
A new ransomware threat uses the **.7ga9lt4bur7 extension** to encrypt files and demands payment to prevent stolen data from being published. Attackers exfiltrate sensitive information before encryption, including employee records and financial documents, risking severe fines and reputational dam...
Read More » -
Texas Sues PowerSchool Over Data Breach Affecting 62M Students
Texas is suing PowerSchool over a major data breach that exposed sensitive information of millions of students, alleging the company failed to protect data and misled customers about security. The breach occurred in December 2024 when an attacker used stolen credentials to access PowerSchool's po...
Read More » -
ELENOR-Crop Ransomware: Mimic & Pay2Key Threat Analysis
The ELENOR-Crop ransomware uses advanced encryption to lock victims out of their data and demands payment for decryption keys, requiring an understanding of its behavior for effective mitigation. Attackers communicate via a specific email, use misleadingly friendly messages to pressure victims in...
Read More » -
TaskUs Staff Implicated in Coinbase Data Breach, Court Docs Claim
A TaskUs employee was identified as the central figure in a major data breach at Coinbase, involving stolen customer data and social engineering attacks. The breach compromised nearly 70,000 users' personal information, leading to a $20 million ransom demand and significant financial losses. Task...
Read More » -
Hackers Breach Red Hat's GitLab Repositories
The Crimson Collective cybercrime group breached Red Hat's internal GitLab repositories, stealing proprietary data from over 28,000 repositories and potentially exposing sensitive client information and internal technical assets. Stolen materials include confidential items like login credentials,...
Read More »