RaaS Archives • Daily CyberSecurity

Unmasked: 16GB “Rocket” Database Leak Exposes The Gentlemen Ransomware Cartel The Gentlemen Ransomware Leak Rocket Database RaaS

Unmasked: 16GB “Rocket” Database Leak Exposes The Gentlemen Ransomware Cartel

Do Son May 18, 2026

A massive internal data leak has blown the lid off “The Gentlemen,” a highly organized Ransomware-as-a-Service (RaaS)...

Cybersecurity Pros Sentenced for Running ALPHV BlackCat Ransomware ALPHV BlackCat Affiliates Ransomware Insider Threat

Cybersecurity Pros Sentenced for Running ALPHV BlackCat Ransomware

Do Son May 2, 2026

Two American cybersecurity professionals were sentenced today to four years each in federal prison. Leveraging the very...

Blurring the Lines: How Iranian State Hackers are Weaponizing RaaS and the Cybercriminal Underground Iranian Cyber Espionage Void Manticore

Blurring the Lines: How Iranian State Hackers are Weaponizing RaaS and the Cybercriminal Underground

Do Son March 15, 2026

A striking evolution is occurring in the world of state-sponsored cyber warfare. According to a recent deep-dive...

North Korea’s Lazarus Group Deploys Medusa Ransomware Against U.S. Healthcare SonicWall Reconnaissance Akira Ransomware residential proxy malware TraderTraitor BreachForums Honeypot, French Interior Ministry Leak

SonicWall Reconnaissance Akira Ransomware residential proxy malware TraderTraitor BreachForums Honeypot, French Interior Ministry Leak

North Korea’s Lazarus Group Deploys Medusa Ransomware Against U.S. Healthcare

Do Son February 26, 2026

A disturbing shift in nation-state cyber tactics has been uncovered as North Korean state-backed attackers integrate Medusa...

LockBit 5.0 Sustains Global Ransomware Dominance LockBit 5.0 Ransomware Ransomware-as-a-Service (RaaS)

LockBit 5.0 Sustains Global Ransomware Dominance

Do Son January 9, 2026

The hydra of the cybercrime world has grown another head. Since its emergence in late 2019, the...

A Desperate Cartel: Inside the Unlikely Alliance of Qilin, DragonForce, and a Fading LockBit Ransomware Cartel, Qilin-LockBit Alliance

A Desperate Cartel: Inside the Unlikely Alliance of Qilin, DragonForce, and a Fading LockBit

Do Son December 23, 2025

In a digital underworld increasingly fractured by law enforcement takedowns and eroding trust, three of the most...

Mario’s Deadly Upgrade: RansomHouse Unveils Dual-Key Encryption to Defeat Backups and Recovery RansomHouse Mario Malware, Jolly Scorpius Encryption

RansomHouse Mario Malware, Jolly Scorpius Encryption

Mario’s Deadly Upgrade: RansomHouse Unveils Dual-Key Encryption to Defeat Backups and Recovery

Do Son December 19, 2025

Jolly Scorpius, the cybercriminal group behind the notorious RansomHouse operation, has rolled out a major overhaul of...

Sophisticated “The Gentlemen” Ransomware RaaS Emerges with XChaCha20 Encryption and 48 Victims in 3 Months The Gentlemen RaaS, XChaCha20 Encryption

The Gentlemen RaaS, XChaCha20 Encryption

Sophisticated “The Gentlemen” Ransomware RaaS Emerges with XChaCha20 Encryption and 48 Victims in 3 Months

Do Son November 20, 2025

The Cybereason Threat Intelligence Team has published an in-depth analysis of a rapidly evolving ransomware group known...

CISA/Europol Warn: Akira Ransomware Profits Hit $244M, Group Expands to Encrypt Nutanix AHV VMs Akira Ransomware, Nutanix AHV Exploit

CISA/Europol Warn: Akira Ransomware Profits Hit $244M, Group Expands to Encrypt Nutanix AHV VMs

Do Son November 18, 2025

The United States Cybersecurity and Infrastructure Security Agency (CISA), alongside a coalition of global law-enforcement and cybersecurity...

HelloKitty Successor Kraken Ransomware Hits Windows/ESXi, Benchmarks Victim Performance Before Encryption

Do Son November 17, 2025

Cisco Talos has released a detailed new analysis showing that the Kraken ransomware group—a successor to the...

DragonForce Ransomware Evolves with BYOVD to Kill EDR and Fixes Encryption Flaws in Conti V3 Codebase DragonForce BYOVD, Conti Codebase

DragonForce Ransomware Evolves with BYOVD to Kill EDR and Fixes Encryption Flaws in Conti V3 Codebase

Do Son November 11, 2025

The Acronis Threat Research Unit (TRU) has identified a new DragonForce ransomware variant that showcases a dramatic...

DragonForce Ransomware Strikes Manufacturing Sector with Brute-Force, Exfiltrating Data Over SSH to Russian Host DragonForce RaaS, Manufacturing Ransomware

DragonForce RaaS, Manufacturing Ransomware

DragonForce Ransomware Strikes Manufacturing Sector with Brute-Force, Exfiltrating Data Over SSH to Russian Host

Do Son November 7, 2025

Cybersecurity firm Darktrace has published a detailed investigation into a DragonForce-affiliated ransomware attack that targeted a manufacturing...

Open-Source AdaptixC2 Hacking Framework Adopted by Russian Cybercriminals and Akira Ransomware AdaptixC2 Abuse, Russian Cybercrime RondoDox Botnet, Exploit Shotgun China Cyber Power, Red Hackers Nvidia cyberattack

AdaptixC2 Abuse, Russian Cybercrime RondoDox Botnet, Exploit Shotgun China Cyber Power, Red Hackers Nvidia cyberattack

Open-Source AdaptixC2 Hacking Framework Adopted by Russian Cybercriminals and Akira Ransomware

Do Son November 3, 2025

Silent Push Threat Analysts have uncovered growing evidence that AdaptixC2, a legitimate open-source post-exploitation framework designed for...

Trigona Ransomware Attacks MS-SQL Servers Using Rust Scanner and BCP Utility to Deploy Payloads Trigona MS-SQL RaaS, Rust Scanner

Trigona Ransomware Attacks MS-SQL Servers Using Rust Scanner and BCP Utility to Deploy Payloads

Do Son October 30, 2025

The AhnLab Security Intelligence Center (ASEC) has published a new report revealing that the Trigona ransomware threat...

Midnight Ransomware Decryption Flaw: Babuk Successor’s RSA Implementation Mistake Allows Free File Recovery

Do Son October 30, 2025

A new ransomware family called Midnight has emerged, borrowing heavily from the Babuk ransomware framework — but...

AhnLab Uncovers Gunra Ransomware: Dual-Platform Threat with Weak Linux Encryption Gunra Linux Weak Key, ChaCha20 rand()

AhnLab Uncovers Gunra Ransomware: Dual-Platform Threat with Weak Linux Encryption

Do Son October 29, 2025

The AhnLab Security Intelligence Center (ASEC) has published an in-depth analysis of the Gunra ransomware group, which...

Beast Ransomware Emerges as New RaaS Threat, Using ChaCha20 and Stealthy VSS Deletion Beast RaaS, ChaCha20 Stealth

Beast Ransomware Emerges as New RaaS Threat, Using ChaCha20 and Stealthy VSS Deletion

Do Son October 29, 2025

Researchers at the AhnLab Security Intelligence Center (ASEC) have released an in-depth analysis of the Beast ransomware...

Qilin RaaS Expands Global Impact: 40+ Victims/Month, Cyberduck Abuse, and WDigest Credential Theft Qilin RaaS, Cyberduck Credential Theft

Qilin RaaS Expands Global Impact: 40+ Victims/Month, Cyberduck Abuse, and WDigest Credential Theft

Do Son October 28, 2025

In its latest analysis covering the second half of 2025, researchers from Cisco Talos have revealed that...

Qilin Ransomware’s Resilience Exposed: Bulletproof Hosting Network Underpins Asahi Group Holdings Attack Qilin Bulletproof Hosting, Asahi Group Ransomware

Qilin Bulletproof Hosting, Asahi Group Ransomware

Qilin Ransomware’s Resilience Exposed: Bulletproof Hosting Network Underpins Asahi Group Holdings Attack

Do Son October 17, 2025

A new report from Resecurity’s HUNTER unit has exposed the global web of bulletproof hosting (BPH) providers...

BQTLock: A New Ransomware-as-a-Service Operation Blending Marketing and Malware Ransomware-as-a-Service, BQTLock

BQTLock: A New Ransomware-as-a-Service Operation Blending Marketing and Malware

Do Son August 25, 2025

A new ransomware strain has entered the cybercrime marketplace, blending technical sophistication with aggressive marketing. Researchers at...

Critical Alert 2 Active Exploits Detected Today

Critical Alert

RaaS

Unmasked: 16GB “Rocket” Database Leak Exposes The Gentlemen Ransomware Cartel

Cybersecurity Pros Sentenced for Running ALPHV BlackCat Ransomware

Blurring the Lines: How Iranian State Hackers are Weaponizing RaaS and the Cybercriminal Underground

North Korea’s Lazarus Group Deploys Medusa Ransomware Against U.S. Healthcare

LockBit 5.0 Sustains Global Ransomware Dominance

A Desperate Cartel: Inside the Unlikely Alliance of Qilin, DragonForce, and a Fading LockBit

Mario’s Deadly Upgrade: RansomHouse Unveils Dual-Key Encryption to Defeat Backups and Recovery

Sophisticated “The Gentlemen” Ransomware RaaS Emerges with XChaCha20 Encryption and 48 Victims in 3 Months

CISA/Europol Warn: Akira Ransomware Profits Hit $244M, Group Expands to Encrypt Nutanix AHV VMs

HelloKitty Successor Kraken Ransomware Hits Windows/ESXi, Benchmarks Victim Performance Before Encryption

DragonForce Ransomware Evolves with BYOVD to Kill EDR and Fixes Encryption Flaws in Conti V3 Codebase

DragonForce Ransomware Strikes Manufacturing Sector with Brute-Force, Exfiltrating Data Over SSH to Russian Host

Open-Source AdaptixC2 Hacking Framework Adopted by Russian Cybercriminals and Akira Ransomware

Trigona Ransomware Attacks MS-SQL Servers Using Rust Scanner and BCP Utility to Deploy Payloads

Midnight Ransomware Decryption Flaw: Babuk Successor’s RSA Implementation Mistake Allows Free File Recovery

AhnLab Uncovers Gunra Ransomware: Dual-Platform Threat with Weak Linux Encryption

Beast Ransomware Emerges as New RaaS Threat, Using ChaCha20 and Stealthy VSS Deletion

Qilin RaaS Expands Global Impact: 40+ Victims/Month, Cyberduck Abuse, and WDigest Credential Theft

Qilin Ransomware’s Resilience Exposed: Bulletproof Hosting Network Underpins Asahi Group Holdings Attack

BQTLock: A New Ransomware-as-a-Service Operation Blending Marketing and Malware