Topic: ransom demands
-
PowerSchool Hacker Sentenced to 4 Years in Prison
A 19-year-old Massachusetts college student received a four-year prison sentence for orchestrating a 2024 cyberattack on PowerSchool, compromising tens of millions of students' and teachers' personal data globally. The attackers used stolen subcontractor credentials to breach systems, exfiltratin...
Read More » -
Retailers Are Fighting Back Against Ransomware
The retail sector is seeing a decline in data encryption during ransomware attacks, but attackers are increasingly using extortion-only tactics and demanding higher ransoms, which have doubled to a median of two million dollars. Recovery costs and times have improved, with expenses dropping by 40...
Read More » -
Hackers Extort 39 Victims With New Data Leak Site
A new cybercriminal group, Scattered Lapsus$ Hunters, is extorting nearly 40 major corporations by threatening to leak stolen data from Salesforce databases obtained through social engineering. The stolen data includes personal and contact details, sensitive information like Social Security numbe...
Read More » -
Oracle Customers Warned of E-Business Suite Data Breach
Businesses using Oracle's E-Business Suite are receiving threatening emails from attackers claiming to have stolen data and demanding millions in ransoms, though these breach claims remain unverified. The campaign originated from compromised email accounts, with security experts noting possible l...
Read More » -
Salesforce Customers Hit by Hackers in Data Extortion Attack
A new hacking collective called Scattered LAPSUS$ Hunters is extorting Salesforce and its customers by stealing and threatening to release approximately one billion records from major organizations using the platform. The group, composed of members from Lapsus$, Scattered Spider, and ShinyHunters...
Read More » -
1 Billion Records Stolen in Salesforce Data Breach
A hacking collective known as ShinyHunters has stolen approximately one billion customer records from Salesforce-hosted cloud databases and is threatening to publish the data unless ransom demands are met. High-profile companies including Allianz Life, Google, Kering, Qantas, Stellantis, TransUni...
Read More » -
Oracle Ties Clop Ransomware to Critical July 2025 Flaws
Oracle has linked extortion emails from the Clop ransomware group to critical vulnerabilities in its E-Business Suite, which were patched in July 2025, urging customers to apply updates immediately. The attackers claim to have stolen sensitive data from Oracle systems and are threatening to relea...
Read More » -
Police Crack Down on Diskstation Ransomware Targeting NAS Devices
A coordinated international police operation led by Europol dismantled the ransomware group 'Diskstation,' which targeted corporate NAS devices, encrypting data and demanding large ransoms. The group, active since 2021, exploited Synology NAS vulnerabilities, attacking businesses like design stud...
Read More » -
BlackSuit Ransomware Sites Shut Down in Operation Checkmate
Law enforcement dismantled BlackSuit ransomware's online infrastructure in Operation Checkmate, seizing dark web domains and replacing them with seizure notices. Multiple international agencies and cybersecurity firm Bitdefender collaborated, while BlackSuit may rebrand as Chaos ransomware,...
Read More » -
Colt Data Breach: Warlock Ransomware Auctions Stolen Customer Files
Colt Technology Services experienced a data breach where customer documentation was stolen and is now being auctioned online by the Warlock ransomware gang. The stolen files include sensitive financial records, network architecture details, and extensive customer information, with the gang demand...
Read More » -
BlackSuit Ransomware's Dark Web Sites Shut Down by Authorities
Authorities dismantled the BlackSuit ransomware group's dark web infrastructure in a global operation, with a seizure notice displayed on their TOR site by U.S. Homeland Security Investigations. The takedown, part of Operation Checkmate, involved agencies from nine countries and targeted BlackSui...
Read More » -
Kraken Ransomware Scans Systems for Fastest Encryption
Kraken ransomware uniquely tests a machine's performance to choose the most efficient encryption method, allowing it to encrypt data quickly without triggering system alerts by using temporary files to decide between full or partial encryption. It targets high-value organizations globally through...
Read More »