A team of data thieves has doubled down by developing its CastleRAT malware in both Python and C variants. Both versions spread by tricking users into pasting malicious commands through a technique ...

Scientists at NYU developed a ransomware prototype that uses LLMs to autonomously to plan, adapt, and execute ransomware attacks. ESET researchers, not knowing about the NYU project, apparently ...

UK-based telecommunications company Colt Technology Services confirms that customer documentation was stolen as Warlock ransomware gang auctions files.

Europol has confirmed that a Telegram channel impersonating the agency and offering a $50,000 reward for information on two Qilin ransomware administrators is fake. The impostor later admitted it ...

Charon uses encrypted payloads and trusted binaries to bypass EDR defenses, marking a shift toward stealthier, more persistent ransomware campaigns.

TRM Labs reports the Embargo ransomware group has moved $34 million in crypto since April, hitting US hospitals and critical infrastructure, with ties to BlackCat.

VS Code flaw lets attackers reuse deleted extension names, enabling ransomware payload delivery and supply chain risks.

A report from TRM Labs provides a detailed analysis of the Embargo ransomware group, its sophisticated tactics, techniques.

The US Justice Department has seized $1 million in Bitcoin ransom payments paid to the BlackSuit ransomware group after a team of agencies took down the gang’s infrastructure.

US authorities reveal how over a million dollars’ worth of cryptocurrency assets laundered by the BlackSuit ransomware gang were seized ahead of a July takedown operation.

The UK government is forging a bold path as it aims to ban ransomware payments from certain organisations. Its actions could herald an inflexion point in Europe's broader response to ransomware.