Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: ransom Clear Filter

New Phobos ransomware decryptor lets victims recover files for free

bleepingcomputer.com Unknown 2025-07-21 18:56:13

The Japanese police have released a Phobos and 8-Base ransomware decryptor that lets victims recover their files for free, with BleepingComputer confirming that it successfully decrypts files. Phobos is a ransomware-as-a-service operation that launched in December 2018, enabling other threat actors to join as affiliates and utilize their encryption tool in attacks. In exchange, any ransom payments were split between the affiliate and the operators. While the ransomware operation did not receiv

Topics: decryptor encrypted files phobos ransomware
Read More
Shop Amazon

M&S confirms social engineering led to massive ransomware attack

bleepingcomputer.com Unknown 2025-08-08 06:39:53

M&S confirmed today that the retail outlet's network was initially breached in a "sophisticated impersonation attack" that ultimately led to a DragonForce ransomware attack. M&S chairman Archie Norman revealed this in a hearing with the UK Parliament's Business and Trade Sub-Committee on Economic Security regarding the recent attacks on the retail sector in the country. While Norman did not go into details, he stated that the threat actors impersonated one of the 50,000 people working with the

Topics: actors attack dragonforce ransomware threat
Read More
Shop Amazon

Ingram Micro says ongoing outage caused by ransomware attack

techcrunch.com Zack Whittaker 2025-08-11 22:57:03

Ingram Micro, a U.S. technology distributing giant and managed services provider, said on Monday a ransomware attack is the cause of an ongoing outage at the company. The hack began on Thursday, after which the company’s website and much of its network went down. Late on Saturday, the company said in a brief statement that it was working to restore systems so it can begin processing orders again. Ingram Micro on Monday alerted shareholders to the breach before markets opened in the United Stat

Topics: company customers ingram micro ransomware
Read More
Shop Amazon

Ingram Micro outage caused by SafePay ransomware attack

bleepingcomputer.com Unknown 2025-08-11 22:58:49

An ongoing outage at IT giant Ingram Micro is caused by a SafePay ransomware attack that led to the shutdown of internal systems, BleepingComputer has learned. Ingram Micro is one of the world's largest business-to-business technology distributors and service providers, offering a range of solutions including hardware, software, cloud services, logistics, and training to resellers and managed service providers worldwide. Since Thursday, Ingram Micro's website and online ordering systems have b

Topics: attack bleepingcomputer ingram micro ransomware
Read More
Shop Amazon

Ransomware gang Hunters International says it’s shutting down

techcrunch.com Lorenzo Franceschi-Bicchierai 2025-08-15 22:45:05

The ransomware gang known as Hunters International announced on its dark web page Thursday that it is shutting down. “After careful consideration and in light of recent developments, we have decided to close the Hunters International project,” the hackers wrote in a post, without clarifying what specific developments it was referring to. “This decision was not made lightly, and we recognize the impact it has on the organizations we have interacted with.” The hackers also said they are offering

Topics: gang hunters international ransomware said
Read More
Shop Amazon

Hunters International ransomware shuts down, releases free decryptors

bleepingcomputer.com Unknown 2025-08-16 04:53:21

​The Hunters International Ransomware-as-a-Service (RaaS) operation announced today that it has officially closed down its operations and will offer free decryptors to help victims recover their data without paying a ransom. "After careful consideration and in light of recent developments, we have decided to close the Hunters International project. This decision was not made lightly, and we recognize the impact it has on the organizations we have interacted with," the cybercrime gang says in a

Topics: extortion group hunters international ransomware
Read More
Shop Amazon

DOJ investigates ex-ransomware negotiator over extortion kickbacks

bleepingcomputer.com Unknown 2025-08-17 05:14:41

An ex-ransomware negotiator is under criminal investigation by the Department of Justice for allegedly working with ransomware gangs to profit from extortion payment deals. The suspect is a former employee of DigitalMint, a Chicago-based incident response and digital asset services company that specializes in ransomware negotiation and facilitating cryptocurrency payments to receive a decryptor or prevent stolen data from being publicly released. The company claims to have conducted over 2,000

Topics: bleepingcomputer company digitalmint investigation ransomware
Read More
Shop Amazon

Johnson Controls starts notifying people affected by 2023 breach

bleepingcomputer.com Unknown 2025-08-21 07:47:26

Building automation giant Johnson Controls is notifying individuals whose data was stolen in a massive ransomware attack that impacted the company's operations worldwide in September 2023. Johnson Controls is a multinational conglomerate that develops and manufactures industrial control systems, security equipment, HVAC systems, and fire safety equipment for buildings. The company employs over 100,000 people through its corporate operations and subsidiaries across 150 countries, reporting sales

Topics: 2023 controls johnson ransomware systems
Read More
Shop Amazon

Switzerland says government data stolen in ransomware attack

bleepingcomputer.com Unknown 2025-08-22 18:39:42

The government in Switzerland is informing that sensitive information from various federal offices has been impacted by a ransomware attack at the third-party organization Radix. The hackers have stolen data from Radix systems and later leaked it on the dark web, the Swiss government says. The exposed data is being analyzed with the help of the country’s National Cyber Security Centre (NCSC) to determine which government agencies are impacted and to what effect. “The foundation Radix has been

Topics: data government radix ransomware sarcoma
Read More
Shop Amazon

Retail giant Ahold Delhaize says data breach affects 2.2 million people

bleepingcomputer.com Unknown 2025-08-25 13:12:43

Ahold Delhaize, one of the world's largest food retail chains, is notifying over 2.2 million individuals that their personal, financial, and health information was stolen in a November ransomware attack that impacted its U.S. systems. The multinational retailer and wholesale company operates over 9,400 local stores across Europe, the United States, and Indonesia, employing more than 393,000 people and serving approximately 60 million customers each week in-store and online. It has reported yea

Topics: ahold delhaize information ransomware stolen
Read More
Shop Amazon

Whole Foods supplier UNFI restores core systems after cyberattack

bleepingcomputer.com Unknown 2025-08-25 15:21:49

American grocery wholesale giant United Natural Foods (UNFI) reports that it has restored its core systems and brought online the electronic ordering and invoicing systems affected by a cyberattack. UNFI, which is also a primary distributor for Amazon's Whole Foods, said in a Thursday update that the incident has been contained and that it's now delivering products to stores at "more normalized levels." In a separate 8-K filing with the U.S. Securities and Exchange Commission, the grocery dist

Topics: breach company incident ransomware unfi
Read More
Shop Amazon

Ryuk ransomware’s initial access expert extradited to the U.S.

bleepingcomputer.com Unknown 2025-09-06 15:05:35

A member of the notorious Ryuk ransomware operation who specialized in gaining initial access to corporate networks has been extradited to the United States. The suspect is a 33-year-old foreign man who was arrested in April 2025 in his home in Kyiv at the request of the FBI. He was extradited to the United States yesterday, June 18. In 2023, the Ukrainian cyber police, the National Police, and international law enforcement partners began investigating a ransomware operation whose members carr

Topics: active numerous operation ransomware ryuk
Read More
Shop Amazon

Krispy Kreme says November data breach impacts over 160,000 people

bleepingcomputer.com Unknown 2025-09-08 05:59:49

U.S. doughnut chain Krispy Kreme confirmed that attackers stole the personal information of over 160,000 individuals in a November 2024 cyberattack. The American multinational coffeehouse chain employed 22,800 people in 40 countries as of December 2023 and operates 1,521 shops and 15,800 points of access. It also manages four "Doughnut Factories" in the United States and 37 others internationally, and it partners with McDonald's to have its products sold in thousands of McDonald's locations wo

Topics: data december information play ransomware
Read More
Shop Amazon

New Veeam RCE flaw lets domain users hack backup servers

bleepingcomputer.com Unknown 2025-09-11 16:42:48

​Veeam has released security updates today to fix several Veeam Backup & Replication (VBR) flaws, including a critical remote code execution (RCE) vulnerability. Tracked as CVE-2025-23121, this security flaw was reported by security researchers at watchTowr and CodeWhite, and it only impacts domain-joined installations. As Veeam explained in a Tuesday security advisory, the vulnerability can be exploited by authenticated domain users in low-complexity attacks to gain code execution remotely on

Topics: backup domain ransomware vbr veeam
Read More
Shop Amazon

New Anubis ransomware can encrypt and destroy data, making file recovery impossible

techspot.com Alfonso Maruccia 2025-09-13 13:07:00

WTF?! Being affected by a dangerous ransomware operation is bad enough, but at least you might have a chance to recover your files somehow. A recently discovered ransomware strain is making things even trickier by offering a new wiping option that allows affiliate criminals to completely destroy data after encryption. Security researchers have discovered a new Ransomware-as-a-Service campaign with highly destructive potential. Anubis has only been around for a few months and fortunately, hasn't

Topics: anubis data operation ransomware security
Read More
Shop Amazon

Anubis ransomware adds wiper to destroy files beyond recovery

bleepingcomputer.com Unknown 2025-09-14 16:29:38

The Anubis ransomware-as-a-service (RaaS) operation has added to its file-encryptimg malware a wiper module that destroys targeted files, making recovery impossible even if the ransom is paid. Anubis (not to be confused with the same-name Android malware with a ransomware module) is a relatively new RaaS first observed in December 2024 but became more active at the beginning of the year. On February 23, the operators announced an affiliate program on the RAMP forum. A report from KELA at the

Topics: anubis encryption micro ransomware trend
Read More
Shop Amazon

Fog ransomware attack uses unusual mix of legitimate and open-source tools

bleepingcomputer.com Unknown 2025-09-19 13:45:14

Fog ransomware hackers are using an uncommon toolset, which includes open-source pentesting utilities and a legitimate employee monitoring software called Syteca. The Fog ransomware operation was first observed last year in May leveraging compromised VPN credentials to access victims’ networks. Post-compromise, they used “pass-the-hash” attacks to gain admin privileges, disabled Windows Defender, and encrypted all files, including virtual machine storage. Later, the threat group was observed

Topics: attack attacks ransomware tool used
Read More
Shop Amazon

CISA and FBI: Ghost ransomware breached orgs in 70 countries

bleepingcomputer.com Unknown 2025-06-03 14:55:05

CISA and the FBI said attackers deploying Ghost ransomware have breached victims from multiple industry sectors across over 70 countries, including critical infrastructure organizations. Other industries impacted include healthcare, government, education, technology, manufacturing, and numerous small and medium-sized businesses. "Beginning early 2021, Ghost actors began attacking victims whose internet facing services ran outdated versions of software and firmware," CISA, the FBI, and the Mult

Topics: 13379 2021 cve ghost ransomware
Read More
Shop Amazon

Black Basta ransomware gang's internal chat logs leak online

bleepingcomputer.com Unknown 2025-06-04 10:48:32

An unknown leaker has released what they claim to be an archive of internal Matrix chat logs belonging to the Black Basta ransomware operation. ExploitWhispers, the individual who previously uploaded the stolen messages to the MEGA file-sharing platform, which are now removed, has uploaded it to a dedicated Telegram channel. It's not yet clear if ExploitWhispers is a security researcher who gained access to the gang's internal chat server or a disgruntled member. While they never shared the r

Topics: basta black chat internal ransomware
Read More
Shop Amazon

New NailaoLocker ransomware used against EU healthcare orgs

bleepingcomputer.com Unknown 2025-06-04 10:00:00

A previously undocumented ransomware payload named NailaoLocker has been spotted in attacks targeting European healthcare organizations between June and October 2024. The attacks exploited CVE-2024-24919, a Check Point Security Gateway vulnerability, to gain access to targeted networks and deploy the ShadowPad and PlugX malware, two families tightly associated with Chinese state-sponsored threat groups. Orange Cyberdefense CERT links the attacks to Chinese cyber-espionage tactics, though there

Topics: attacks nailaolocker orange ransom ransomware
Read More
Shop Amazon
Trending Topics
Hot Now
ai 1495 apple 1095 new 903 content 844 google 676
Popular
like 654 zdnet 647 amazon 646 does 527 company 527 reviews 520 editorial 506 day 492 app 480 said 450
Emerging
data 447 prime 446 samsung 398 phone 394 game 385 pro 384 just 373 android 352 deals 338 galaxy 323
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]