GentleKiller Framework Disables Victims' Security Software
ESET details GentleKiller, the EDR-killer framework the Gentlemen ransomware gang gives affiliates
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
ESET details GentleKiller, the EDR-killer framework the Gentlemen ransomware gang gives affiliates
Trend Micro highlighted the new LockBit version’s improved technical improvements and cross-platform functionality compared to previous iterations
While still in development, PromptLock is described as the “first known AI-powered ransomware” by ESET researchers
Trend Micro highlighted a sophisticated post-compromise attack chain to deploy the Warlock ransomware in unpatched SharePoint on-prem environments
Avast researchers shared a step-by-step guide to decrypt files for victims of FunkSec ransomware
Trend Micro has observed the Bert ransomware group in operation since April 2025, with confirmed victims in sectors including healthcare, technology and event services
Trend Micro identified a novel “wipe mode” included in Anubis ransomware to prevent file recovery, increasing pressure on victims to give in to demands
Trend Micro observed a continuous development of Albabat ransomware, designed to expand attacks and streamline operations
Symantec found that Medusa has listed almost 400 victims on its data leaks site since early 2023, demanding ransom payments as high as $15m
Symantec found that tools previously only used by Chinese nation-state espionage actors were deployed in a ransomware attack
The recently discovered Embargo ransomware group is using Rust-based custom tools to overcome victims’ security defenses, ESET researchers have observed
Symantec data reveals RansomHub claimed more attacks than any other group in Q3 2024
Trend Micro also revealed a connection between the Play ransomware group and the threat actor Prolific Puma
Symantec figures suggest a 9% annual increase claimed ransomware attacks
Researchers at Avast found a flaw in the cryptographic schema of the DoNex ransomware and have been sending out decryptor keys to victims since March 2024
A Trend Micro report shows a clear drop in the number of actual infections associated with the LockBit ransomware following Operation Cronos
The Trend Micro report observed that small organizations are being increasingly targeted by ransomware gangs, including LockBit and BlackCat
Symantec says it was used in a failed LockBit attack
Kaspersky found suspicious files in December 2022 which activated the komar65 library known as BUGHATCH
Kaspersky explained that LockBit 3.0, also known as LockBit Black, first emerged in June 2022