Remove Business Services Remove Cybercrime Remove Encryption
article thumbnail

Authorities released free decryptor for Phobos and 8base ransomware

Security Affairs

JULY 18, 2025

NoMoreRansom warns users to remove the malware first with a reliable antivirus before using the decryptor, or files may be re-encrypted repeatedly. Phobos operation uses a ransomware-as-a-service (RaaS) model, it has been active since May 2019. Europol and the FBI are promoting it as an official recovery solution.

Ransomware 132
Ransomware Encryption Malware Cybercrime 132
article thumbnail

Operation Phobos Aetor: Police dismantled 8Base ransomware gang

Security Affairs

FEBRUARY 11, 2025

“They allegedly used the Phobos malware to encrypt information on the networks, blocking the companies from accessing the data unless a ransom was paid and a decryption key was provided by the gang. Generation of target list of extensions and folders to encrypt. ” reported the website Nation Thailand.

Ransomware 75
Ransomware Encryption Backups Malware 75
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

article thumbnail

8Base ransomware operators use a new variant of the Phobos ransomware

Security Affairs

NOVEMBER 19, 2023

Phobos variants are usually distributed by the SmokeLoader , but in 8Base campaigns, it has the ransomware component embedded in its encrypted payloads. The group has been active since March 2022, it focused on small and medium-size businesses in multiple industries, including finance, manufacturing, business services, and IT.

Ransomware 143
Ransomware Encryption Backups Manufacturing 143
article thumbnail

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

Security Affairs

AUGUST 21, 2021

.” The victims of the Lockfile ransomware gang are in the manufacturing, financial services, engineering, legal, business services, and travel and tourism sectors. Once encrypted the files, the ransomware will append the .lockfile lockfile extension to the encrypted file’s names.

Ransomware 144
Ransomware Financial Services Hacking Encryption 144
article thumbnail

Experts warn of a spike in May and June of 8Base ransomware attacks

Security Affairs

JUNE 28, 2023

The group has been active since March 2022, it focused on small and medium-size businesses in multiple industries, including finance, manufacturing, business services, and IT. “8Base has an opportunistic pattern of compromise with recent victims spanning across varied industries.” and Brazil.

Ransomware 98
Ransomware Encryption Manufacturing Business Services 98
article thumbnail

Ransomware Attacks on Schools: 'Dirty, Rotten Scoundrels' Stop Online Learning

SecureWorld News

AUGUST 31, 2020

"We talked about the possibility of waiting to the end of school, but our IT folks said, just like any other infection, the longer you let it go the worse it is going to get," said Assistant Superintendent of Business Services Larry Teixeira. There's a lot of extradition issues with countries, so cybercrime has really grown.

Ransomware 98
Ransomware Cryptocurrency Technology Insurance 98
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 

Stay Connected

Join 28,000+ Insiders by signing up for our newsletter

About
About
Editions
Editions
Topics
Powered by Aggregage | Terms and Conditions | Your California Rights and Privacy Policy | Cookie Settings
© Aggregage 2025