ITWire

Threat actors use Python script in swift ESXi ransomware attack

Attackers used a script written in Python during a recent ransomware attack which took just three hours, encrypting all the virtual disks on the target's virtual machine hypervisor. Andrew Brandt, the ...

AI-built ransomware toolkit automates EDR evasion, AD discovery

A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade ...
Dark Reading

Cloud Ransomware Flexes Fresh Scripts Against Web Apps

Instead of solely leaning on leaky buckets and cloud service provider (CSP) vulnerabilities to exfiltrate sensitive data, a fresh crop of cloud-targeting ransomware is aimed instead at exploiting ...
Dark Reading

PyLocky Ransomware Can Get Around Machine Learning Solutions

Ransomware may not be as high profile as it was last year in the wake of WannaCry and other campaigns, but threat actors continue to improve on the malware. A recent example is PyLocky, a ransomware ...
Bleeping Computer

Free Key Group ransomware decryptor helps victims recover data

Researchers took advantage of a weakness in the encryption scheme of Key Group ransomware and developed a decryption tool that lets some victims to recover their files for free. The decryptor was ...
Android Police

Ransomware: What it is, and how you can avoid losing all your data in an attack

I’ve been covering Android since 2023, when I joined Android Police, mostly focusing on AI and everything around Pixel and Galaxy phones. I’ve got a bachelor’s in IT with a major in AI, so I naturally ...