#doubleExtortion

The Daily Tech Feed

@thedailytechfeed.com

2 weeks ago

Steaelite RAT revolutionizes cyber threats by merging data theft and ransomware into one tool. Enterprises must bolster defenses against this all-in-one menace. #CyberSecurity #SteaeliteRAT #DoubleExtortion Link: thedailytechfeed.com/steaelite-ra...

speicherguide.de

@speicherguide.bsky.social

3 months ago

Sophos: Ransomware in der Fertigung: weniger Krypto, mehr Druck Die Ransomware-Verschlüsselungsrate in der Fertigung ist laut Sophos so niedrig wie seit fünf Jahren nicht mehr. Doch Angreifer weichen verstärkt auf Datendiebstahl und Double Extortion aus, mehr als ...

🔎 #Sophos Report: In der Fertigung sinkt die Verschlüsselungsrate, doch #Datendiebstahl, #DoubleExtortion und hohe Lösegeldzahlungen bleiben Risiko.
👉 www.speicherguide.de/management/c...

#ransomware

ransomNews

@ransomnews.online

4 months ago

⚠️ CL0P ransomware evolves its tactics

The #CL0P gang has upgraded its operations: extending dwell time, leveraging 0day flaws in file-transfer software, and accelerating double-extortion campaigns across manufacturing, education and healthcare.

#ransomNews #doubleExtortion

DysruptionHub

@dysruptionhub.infosec.exchange.ap.brid.gy

4 months ago

Catawba County, North Carolina website restored after outage County website came back Sept. 22 after days offline. On Oct. 14, Qilin claimed the county; no link to the outage has been confirmed.

Catawba County, North Carolina website restored after outage #Ransomware #Qilin #DataLeak #WebsiteOutage #NorthCarolina #DoubleExtortion dysruptionhub.com/catawba-county-north-car...

CySecurity News

@cysecuritynews.bsky.social

7 months ago

‘FileFix’ Malware Trick Amplifies Interlock Ransomware Threat With Evolved Attack Tactic   Cybersecurity researchers have identified a dangerous new twist to the notorious ClickFix malware tactic. The evolved variant—called FileFix—is now being weaponized in active ransomware campaigns, further advancing the threat landscape. ClickFix typically lures users by showing them a bogus issue—like a fake CAPTCHA or a misleading virus alert—and then offers a “solution” that involves copying and pasting a command from a compromised website into the Windows Run dialog. This command often triggers the download and execution of malicious software. However, the new FileFix technique modifies that approach. Instead of using the Run command, it instructs users to paste a string into the File Explorer address bar. Though it appears as a legitimate file path, the string is actually a disguised PowerShell command, cleverly masked using comment syntax. In recent attacks observed in the wild, executing this PowerShell string installs a PHP-based version of the Interlock Remote Access Trojan (RAT). Once active, the RAT performs a range of actions—scanning system and network configurations, identifying backup systems, navigating through local file directories, probing Active Directory environments, and even inspecting domain controllers. Eventually, the RAT leads to the deployment of the Interlock ransomware encryptor. Interlock first appeared in September 2024 and was publicly detected by November the same year. It stood out by targeting both Windows and FreeBSD systems. Some high-profile victims include Wayne County (Michigan), Texas Tech University Health Sciences Center, Heritage Bank & McCormick–Priore, and Kettering Health. The ransomware employs the typical double extortion approach—stealing sensitive data before locking systems with encryption to demand ransom. As of mid-2025, Interlock has been linked to at least 14 confirmed incidents, with healthcare entities making up about one-third of the total. This shift in delivery method suggests active development of the malware and underscores its ongoing threat to global organizations.

‘FileFix’ Malware Trick Amplifies Interlock Ransomware Threat With Evolved Attack Tactic #Doubleextortion #FileFix #healthcareransomwareattacks

CyberLens Newsletter

@cyberlensnews.bsky.social

9 months ago

Cracked at the Core: How Ransomware Gangs Exploit SimpleHelp Flaws for Double Extortion Schemes Inside the Tactical Playbook of Threat Actors Weaponizing Remote Access Software Vulnerabilities to Orchestrate Multi-Layered Extortion Campaigns

Cracked at the Core: Ransomware gangs are targeting unpatched SimpleHelp flaws—using remote access against you. The result? Double extortion: data stolen and encrypted. Patch now or pay twice.
#Cybersecurity #Ransomware #SimpleHelp #DoubleExtortion #Infosec

cyberlens.beehiiv.com/p/cracked-at...

Manuel Bissey

@mbissey.bsky.social

9 months ago

Interlock ransomware: what you need to know Interlock is a 2024 ransomware strain targeting both Windows and FreeBSD systems, making it more versatile than typical ransomware.

🧬 Interlock ransomware is on the rise—using double extortion and targeting backups to maximize damage. Victims face encryption and data leaks. Defense tip: segment, back up, and stay alert. 🛡️💾
#InterlockThreat #DoubleExtortion

ReconBee

@reconbee.bsky.social

10 months ago

ToyMaker Uses LAGTOY to Sell Access to CACTUS Ransomware Gangs for Double Extortion Prophet Spider and Gold Melody read more about ToyMaker Uses LAGTOY to Sell Access to CACTUS Ransomware Gangs for Double Extortion

ToyMaker Uses LAGTOY to Sell Access to CACTUS Ransomware Gangs for Double Extortion reconbee.com/toymaker-use...

#Toymaker #LAGTOY #CACTUS #ransomwaregang #doubleextortion #ransomwareattack #cyberattacks

@matricedigitale.bsky.social

11 months ago

EncryptHub tra vulnerabilità Windows e cybercrimine; Everest ransomware messo offline da un attacco. Due facce della sicurezza digitale.

#bugbounty #cybercrime #doubleextortion #EncryptHub #everest #inizialaccessbroker #Ransomware #vulnerabilità #Wordpress
www.matricedigitale.it/sicurezza-in...

The DefendOps Diaries

@defendopsdiaries.bsky.social

11 months ago

BlackLock Ransomware: A New Era of Cyber Threats | The DefendOps Diaries Explore BlackLock ransomware's double-extortion tactics and its impact on cybersecurity in 2025.

BlackLock Ransomware: A New Era of Cyber Threats

#blacklockransomware
#cybersecurity2025
#doubleextortion
#ransomwarethreat
#infosec

CySecurity News

@cysecuritynews.bsky.social

1 year ago

Qilin Ransomware Outfit Claims Credit for Lee Enterprises Breach  The Lee Enterprises attack that caused disruptions on February 3 has been linked to the Qilin ransomware group, which has released samples of data they claim were stolen from the enterprise. The ransomware actors have now threatened to release all of the…

Qilin Ransomware Outfit Claims Credit for Lee Enterprises Breach #CyberAttacks #DataTheft #Doubleextortion

💥Cybercrimeinfo | Ptr Lhss💥

@cybercrimeinfo.bsky.social

1 year ago

Double Extortion Ransomware: Een onderzoek naar de winst, inspanning en risico’s voor cybercriminelen / Ransomware / Cybercrime / Menu Onderwijs & Ontwikkeling | Cybercrimeinfo Double extortion ransomware: hoe cybercriminelen winst maken door losgeld én datalekken. Ontdek risico’s, trends en hoe bedrijven zich kunnen beschermen.

🔎 #DoubleExtortion #Ransomware blijft een groeiende #Cybercrime dreiging. Cybercriminelen combineren #losgeld eisen met #datalekken om maximale winst te behalen. Hoe werkt dit verdienmodel, en hoe kunnen bedrijven zich beschermen? Lees het hier: 🔗 www.ccinfo.nl/menu-onderwi...

The DefendOps Diaries

@defendopsdiaries.bsky.social

1 year ago

Unpacking the Sarcoma Ransomware Attack on Unimicron: A Tech-Savvy Dive | The DefendOps Diaries Explore the Sarcoma ransomware attack on Unimicron, highlighting its tactics, industry impact, and cybersecurity implications.

Unpacking the Sarcoma Ransomware Attack on Unimicron: A Tech-Savvy Dive

thedefendopsdiaries.com/unpacking-th...

#sarcomaransomware
#cybersecurity
#ransomwareattack
#dataprotection
#cybercrime
#infosec
#cyberthreats
#doubleextortion
#unimicronbreach
#cybersecuritytrends

CySecurity News

@cysecuritynews.bsky.social

1 year ago

Play Ransomware: A Rising Global Cybersecurity Threat   Play ransomware, also known as Balloonfly or PlayCrypt, has become a significant cybersecurity threat since its emergence in June 2022. Responsible for over 300 global attacks, this ransomware employs a double extortion model — stealing sensitive data…

#CyberSecurity #DataExfiltration #Doubleextortion Play Ransomware: A Rising Global Cybersecurity Threat:  


Play ransomware, also known as Balloonfly or PlayCrypt, has become a significant cybersecurity threat since its emergence in June 2022. Responsible for over 300 global attacks, this…

Peter Girnus

@gothburz.bsky.social

1 year ago

💻 Attack Techniques: The prevalent methods include phishing, exploiting remote desktop protocol (RDP) vulnerabilities, and leveraging software supply chain weaknesses. Notably, ransomware groups are increasingly using double extortion tactics. #CyberAttack #DoubleExtortion

Rene Robichaud

@neroqc.bsky.social

1 year ago

New Double-Extortion Ransomware Attacking Linux Machines A new Linux ransomware variant linked to a bilingual (English and Spanish) double-extortion ransomware group.

New Double-Extortion Ransomware Attacking Linux Machines
cybersecuritynews.com/linux-ransom...
#Infosec #Security #Cybersecurity #CeptBiro #DoubleExtortion #RansomwareAttacking #LinuxMachines