EN
DE
BeforeCrypt Blog
Latest posts
CiphBit Ransomware
CiphBit ransomware, first discovered in 2020, continues to pose a significant risk due to its uncrackable encryption and persistence in victims’ networks. Two notable incidents include the attack on Travelex currency exchange in January 2020 and the crippling of hospital systems in the Universal Health Services network in the U.S in September 2020. This variant […]
09.09.2025
News Week: July 28th to August 3rd, 2025
Remote Code Execution in PaperCut Software Draws Ransomware Gang Interest A recently patched remote code execution (RCE) flaw in PaperCut NG/MF (CVE-2023-2533) is now actively exploited, prompting CISA to urge immediate action. The bug enables attackers to change security settings or run arbitrary code if an authenticated admin clicks a crafted link, often via cross-site […]
04.08.2025
News Week: July 21st to July 27th, 2025
Over 1,000 CrushFTP Servers Exposed to Zero-Day Exploit and Ransomware Threats More than 1,000 CrushFTP servers remain vulnerable to a critical zero-day flaw, putting them at risk of hijack attempts and data breaches. The issue, tracked as CVE-2025-54309, stems from improper AS2 validation and affects all versions below 10.8.5 and 11.3.4_23. While a fix has […]
28.07.2025
News Week: July 14th to July 20th, 2025
Interlock Ransomware Leverages FileFix and RDP in New Attack Wave Interlock ransomware has recently adopted a stealthier attack method known as FileFix to deliver remote access trojans (RATs) onto victims’ systems. This method manipulates Windows elements like File Explorer to trick users into pasting disguised PowerShell commands, which then download malware hosted on platforms like […]
21.07.2025
News Week: July 7th to July 13th, 2025
Chinese National Arrested in Italy for Links to Silk Typhoon Cyberespionage A Chinese citizen was arrested at Milan’s Malpensa Airport earlier this month on suspicion of ties to Silk Typhoon, a state-backed hacking group also known as Hafnium. The 33-year-old suspect, Xu Zewei, was apprehended on a U.S. international warrant and is believed to be […]
14.07.2025
News Week: June 30th to July 6th, 2025
Ransomware Attack on Radix Impacts Swiss Government Offices A ransomware breach targeting the Swiss non-profit Radix has compromised sensitive data from multiple federal agencies. The attack was carried out by the Sarcoma group, which exploited phishing tactics, outdated vulnerabilities, and notably Remote Desktop Protocol (RDP) access to infiltrate the system. After stealing and encrypting the […]
11.07.2025
Lynx Ransomware
Lynx Ransomware: The Hidden Predator The Lynx Ransomware was first reported in November 2020 and has been posing a significant threat since. One of the notable victims of this ransomware includes Canadian healthcare service provider ‘LifeLabs’, leading to temporary suspension of its services. In another incident, the Bulgarian National Revenue Agency (NRA) fell prey to […]
04.07.2025
Top Cyber Insurance Executives Gather at Finlex Summit 2025: BeforeCrypt Shares Expertise
Imagine this: It’s 3 AM on a Tuesday. Your production systems are frozen. A skull and crossbones fills every computer screen in your facility. Your 150 employees can’t work. Your customers are calling. And a message demands $2.5 million in Bitcoin to unlock everything. This isn’t a nightmare – it’s Monday morning for too many […]
23.06.2025
Interlock Ransomware
Discovered in mid-2019, InterLock Ransomware has emerged as a sinister cyber threat. The risk factor surrounding this ransomware variant remains high, especially for Windows users. In March 2020, it struck more than 50 school districts in the US causing long-term damage. Another high-profile incident took place in the same month when it breached the network […]
06.06.2025
SilentRansomGroup
Unlock the Secrets of SilentRansomGroup: A Rising Threat in the Ransomware Landscape First identified in early 2023, SilentRansomGroup has rapidly gained attention within cybersecurity circles as a notable threat actor employing sophisticated encryption techniques. Their malware campaigns have targeted various industries worldwide, making them a medium to high-risk concern for organizations seeking to protect their […]
13.05.2025
BlackLock Ransomware
BlackLock Ransomware: Key Insight into the Unseen Hazard BlackLock Ransomware first shot to prominence in early 2022 and since then, it has persistently posed significant threats to both individual computer users and corporations. As of today, this ransomware variant is considered a medium level risk. It grabbed major headlines when it targeted a range of […]
29.04.2025
SuperBlack Ransomware
SuperBlack Ransomware: The Silent Data Harvester SuperBlack Ransomware, first emerging into the cyber landscape in the early months of 2018, remains a medium risk to organizations today. Predominantly, organizations in the US and Europe have been selected targets of attack. In 2020, Publican School System [external link to trusted source] succumbed to an attack and […]
29.04.2025
EncryptHub Ransomware
Deep Dive on the EncryptHub Ransomware EncryptHub is a ransomware variant that was first detected in mid-2021. This ransomware strain poses a significant threat, with numerous organizations across the globe falling prey to its attacks. For instance, in December 2021, several South Korean companies reported EncryptHub intrusions, leading to significant data encryption and business interruption […]
29.04.2025
Shinra Ransomware
Shinra Ransomware Ever since Shinra Ransomware was first discovered in early 2021, it has posed a significant threat to businesses and individuals alike. It’s a medium risk ransomware that primarily targets Windows operating systems. One prominent case involved an attack on a US software company in May 2021, causing the company to lose important data […]
29.04.2025
Scattered Spider Ransomware
Understanding the Threat: A Look into Scattered Spider Ransomware Initially reported in the fall of 2018, the ransomware variant Scattered Spider Ransomware remains a medium risk threat across the digital landscape. Targeting primarily Windows operating systems, it was notably involved in an attack on the Carabinieri’s network infrastructure in 2018 and a reported cyber attack […]
28.04.2025
DragonForce Ransomware
The DragonForce Ransomware: A Data Breach Firestorm First unearthed in late 2021, the ransomware variant type DragonForce ransomware has swiftly become a high-risk threat in the cybersecurity landscape. There currently is nothing known about the file extension for the DragonForce ransomware, but we will update our list of the most common ransomware file extensions as […]
28.04.2025