-
Kraken ransomware benchmarks systems for optimal encryption choice
The Kraken ransomware, which targets Windows, Linux/VMware ESXi systems, is testing machines to check how fast it can encrypt data without overloading them.
- November 13, 2025
- 05:53 PM
0
-
The Week in Ransomware - April 19th 2024 - Attacks Ramp Up
While ransomware attacks decreased after the LockBit and BlackCat disruptions, they have once again started to ramp up with other operations filling the void.
- April 19, 2024
- 07:36 PM
0
-
New Webinar: Choose Your Own Investigation — Browser Attack Edition
Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.
Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.
-
HelloKitty ransomware rebrands, releases CD Projekt and Cisco data
An operator of the HelloKitty ransomware operation announced they changed the name to 'HelloGookie,' releasing passwords for previously leaked CD Projekt source code, Cisco network information, and decryption keys from old attacks..
- April 19, 2024
- 03:20 PM
- 4
-
HelloKitty ransomware now exploiting Apache ActiveMQ flaw in attacks
A remote code execution (RCE) flaw impacting Apache ActiveMQ has been under active exploitation by threat actors who use HelloKitty ransomware payloads.
- November 02, 2023
- 12:21 PM
- 0
-
The Week in Ransomware - October 13th 2023 - Increasing Attacks
Ransomware gangs continue to pummel the enterprise, with attacks causing disruption in business operations and resulting in data breaches if a ransom is not paid.
- October 13, 2023
- 06:26 PM
- 0
-
HelloKitty ransomware source code leaked on hacking forum
A threat actor has leaked the complete source code for the first version of the HelloKitty ransomware on a Russian-speaking hacking forum, claiming to be developing a new, more powerful encryptor.
- October 09, 2023
- 08:25 AM
- 0
-
Linux version of Abyss Locker ransomware targets VMware ESXi servers
The Abyss Locker operation is the latest to develop a Linux encryptor to target VMware's ESXi virtual machines platform in attacks on the enterprise.
- July 29, 2023
- 11:17 AM
- 0
-
FBI: HelloKitty ransomware adds DDoS attacks to extortion tactics
The U.S. Federal Bureau of Investigation (FBI) has sent out a flash alert warning private industry partners that the HelloKitty ransomware gang (aka FiveHands) has added distributed denial-of-service (DDoS) attacks to their arsenal of extortion tactics.
- November 01, 2021
- 10:13 AM
- 0
-
HelloKitty ransomware is targeting vulnerable SonicWall devices
CISA is warning of threat actors targeting "a known, previously patched, vulnerability" found in SonicWall Secure Mobile Access (SMA) 100 series and Secure Remote Access (SRA) products with end-of-life firmware.
- July 17, 2021
- 11:44 AM
- 0
-
The Week in Ransomware - July 16th 2021 - REvil disappears
Ransomware operations have been quieter this week as the White House engages in talks with the Russian government about cracking down on cybercriminals believed to be operating in Russia.
- July 16, 2021
- 03:42 PM
- 0
-
Linux version of HelloKitty ransomware targets VMware ESXi servers
The ransomware gang behind the highly publicized attack on CD Projekt Red uses a Linux variant that targets VMware's ESXi virtual machine platform for maximum damage.
- July 15, 2021
- 11:13 AM
- 3
-
CD Projekt: Data stolen in ransomware attack now circulating online
CD Projekt is warning today that internal data stolen during their February ransomware attack is circulating on the Internet.
- June 10, 2021
- 05:57 PM
- 0
-
Cyberpunk 2077 patch 1.2 delayed by CD Projekt ransomware attack
CD Projekt Red announced today that they are delaying the anticipated Cyberpunk 2077 Patch 1.2 to the second half of March 2021 due to their recent cyberattack.
- February 24, 2021
- 01:14 PM
- 2
-
CD Projekt's stolen source code allegedly sold by ransomware gang
A ransomware gang who says they stole unencrypted source code for the company's most popular games and then encrypted CD Projekt's servers claims to have sold the data.
- February 13, 2021
- 10:35 AM
- 0
-
The Week in Ransomware - February 12th 2021 - More keys released
This week we saw another ransomware shut down its operation and a significant attack against Cyberpunk 2077 game developer CD Projekt Red.
- February 12, 2021
- 05:32 PM
- 3
-
Hackers auction alleged stolen Cyberpunk 2077, Witcher source code
Threat actors are auctioning the alleged source code for CD Projekt Red games, including Witcher 3, Thronebreaker, and Cyberpunk 2077, that they state were stolen in a ransomware attack.
- February 10, 2021
- 10:43 AM
- 0
-
HelloKitty ransomware behind CD Projekt Red cyberattack, data theft
The ransomware attack against CD Projekt Red was conducted by a ransomware group that goes by the name 'HelloKitty,' and yes, that's the name the threat actors utilize.
- February 09, 2021
- 03:42 PM
- 0
