Once again, the developers of the Locky Ransomware have decided to change the extension of encrypted files. This time, the ransomware developers moved away from Norse gods and into Egyptian mythology ...

A new CryptoMix, or CryptFile2, variant was released that is now using the .[payment_email].ID[VICTIM_16_CHAR_ID].WALLET extension for encrypted files. This is very annoying as it makes it more ...

A suspicious Visual Studio Code extension with file-encrypting and data-stealing behavior successfully bypassed marketplace ...

Cybersecurity researchers have flagged a malicious Visual Studio Code (VS Code) extension with basic ransomware capabilities ...

A published VS Code extension didn't hide the fact that it encrypts and exfiltrates data and also failed to remove obvious signs it was AI-generated.

To fly under the radar, the newly discovered ransomware is compiled into a Java image file format that’s rarely used by developers. A new ransomware strain called Tycoon is seeking to wheel and deal ...

A malicious extension was published on Microsoft’s official VS Code marketplace, and was able to remain there for some time ...

A new form of ransomware has emerged and is being distributed through malicious Office documents, infecting victims with file-encrypting malware. Uncovered by researchers at Netskope, the 'Spider ...

Ransomware can strike any industry, from logistics and media companies to non-profit organizations and governments. Even hospitals are targets for ransomware, holding data and lives hostage.

Victims of Paradise ransomware can now retrieve their files without giving into the demands of cyber criminals thanks to a newly released decryption tool. Researchers at cybersecurity company Emsisoft ...