CyberHazard Ransomware
CyberHazard Ransomware is a file-locking virus associated with the MedusaLocker family. It encrypts personal files using strong algorithms, appends the .cyberhazard extension, and…
Kremlin Ransomware
Warning: Kremlin Ransomware silently encrypts your files and extorts victims with ransom demands. Immediate action is essential to protect your data…
Revault Ransomware
Revault Ransomware Summary Threat TypeRansomware – File-encrypting malwareEncrypted File Extension.revaultRansom Note FilenameREADME.txtEmail Contactdecryption.revault@protonmail.comDetection NamesRansom:Win32/Revault, Trojan.Ransom.Revault, Revault.RansomSymptomsFiles renamed with .revault, ransom note…
Solara Ransomware
Solara ransomware encrypts your files, demanding ransom for decryption. Immediate action is crucial—don’t delay. Threat Overview: Solara Ransomware CategoryDetailsThreat TypeRansomware,…
Jackpot MedusaLocker Ransomware
The Jackpot MedusaLocker ransomware is a dangerous file-encrypting malware strain that locks your personal data and demands a cryptocurrency ransom in return.…
LEVEL Ransomware
The LEVEL ransomware is a variant of the Phobos family that encrypts user files and appends the .LEVEL extension. Once embedded, it disables file…
RestoreMyData Ransomware
RestoreMyData ransomware is a dangerous file-locking virus that encrypts users' data and demands payment in Bitcoin to restore access. It…
Cybertron Ransomware
Cybertron Ransomware is a dangerous strain of malware from the MedusaLocker family. First identified in August 2025, it encrypts victims’…
Warlock Group Ransomware
Warlock Group ransomware is a newly emerging and highly impactful crypto‑virus that has struck at least 145 organizations globally via…
DEV Ransomware
DEV ransomware is a newly discovered malware threat that encrypts victims' files and demands a ransom payment for the decryption…
RTRUE ransomware
RTRUE ransomware is a crypto-extortion malware that encrypts files on infected systems and threatens to publish stolen data unless a…
Scattered Spider
Scattered Spider is not a standalone ransomware strain but a highly sophisticated cybercriminal grouping that orchestrates ransomware attacks—particularly on VMware…
GagaKick Ransomware
GagaKick is a relatively new ransomware family that encrypts victims’ files and demands payment to recover them. It spreads via malicious email…
REVRAC (Makop) Ransomware
REVRAC is a ransomware variant from the Makop family that encrypts victims’ files and demands payment in Bitcoin. It appends the .REVRAC extension to…
Cowa Ransomware
Cowa is a form of ransomware that infiltrates systems, encrypts user files, and demands ransom for decryption. This article explains…
Wannachaos666 (Chaos Ransomware)
The Wannachaos666 ransomware, more commonly known as Chaos, is a highly destructive malware strain that surged in activity in mid‑2025. Evolved…
JustIce Ransomware
JustIce (also styled as Just Ice) is a dangerous ransomware variant that encrypts user files and demands payment for their…
Xentari Ransomware
Xentari is a Python‑based crypto‑ransomware that stealthily encrypts your valuable files—documents, photos, videos, databases—by appending the .xentari extension. It then drops a…
Bash 2.0 (Bash Red) Ransomware
Bash 2.0—also known as Bash Red—is a file-encrypting ransomware variant based on the Chaos ransomware family. It targets user data by…
Atomic Ransomware
Atomic ransomware is a Ransomware-as-a-Service (RaaS) variant—an evolution of the Shark RaaS—that empowers even non-technical attackers to deploy data-locking malware…
Nebula (NBL) Ransomware
Nebula—also referred to as NBL ransomware—is a newly identified crypto‑locker that encrypts user files, appending the .nbl extension and demanding contact via…
AntiHacker Ransomware
AntiHacker is a malicious ransomware strain belonging to the Xorist family. It encrypts user data and appends the extension .antihacker2017, demanding…
Adventurer Ransomware
Adventurer ransomware is a dangerous crypto-virus that locks victims’ files by appending the .adventurer extension and delivers a ransom demand named README.TXT. This…
.dlock Ransomware
The .dlock Ransomware, also known as Deadlock Ransomware, is a dangerous cyber threat that encrypts files across your computer and demands a…
SamSam Ransomware
SamSam Ransomware is a highly sophisticated and dangerous file-encrypting malware strain that has been responsible for crippling networks across the…
Remove FileCoder: In-Depth Guide for Mac Ransomware Protection
FileCoder, also known as Ransomware.MacOS.FileCoder.A or OSX/Filecoder.E, is a dangerous ransomware threat that specifically targets macOS systems. It encrypts user…
GLOBAL GROUP Ransomware
GLOBAL GROUP is a newly emerged Ransomware-as-a-Service (RaaS) operation first active around June 2, 2025, rebranded from previous BlackLock/Mamona-family ransomware. It targets high-value…
BQTLOCK Ransomware
BQTLOCK is a recently discovered ransomware strain that targets Windows systems. It encrypts victims’ files using robust AES‑256 and RSA‑4096…
SparkLocker Virus
SparkLocker is a dangerous ransomware strain that encrypts users' personal files and demands a ransom—typically $5,000 in Bitcoin—in exchange for…
SM$LE Ransomware
SM$LE (Smile) is a crypto‑ransomware strain that encrypts your files, appending the .SM$LE extension to every targeted document, image, or executable. Victims receive a…
BlackFl Ransomware
BlackFl is a recent ransomware strain that targets organizations and individuals by encrypting files and attempting to extort victims through…
Onionmail/Air Ransomware
Onionmail/Air—also known as AIR or Makop—belongs to the notorious Phobos-derived ransomware family. It encrypts your files, changing their extension to .AIR and…
SpiderPery Ransomware
SpiderPery is a newly identified ransomware strain discovered in early July 2025. It belongs to the crypto‑virus family and encrypts…
Darkness Ransomware
Darkness Ransomware Darkness ransomware is a newly identified malicious strain designed to encrypt user files and demand payment for their…
Ziver Ransomware
Ziver is a Makop-based ransomware, first spotted in July 2025, that encrypts user files and appends a unique ID, the developer’s…
Sinobi Ransomware
Sinobi is a newly discovered ransomware that encrypts personal and business files by appending the .SINOBI extension. It then locks you out…
Kyj Ransomware
A recent surge in Kyj ransomware attacks revealed victims waking up to locked files marked with the .kyj extension—prompting ransomware notes demanding contact via kyjpc@cock.li or…
Blackransombdbot
A user discovered their files renamed with a .blackransombdbot extension, a tell‑tale sign of the new Blackransombdbot ransomware—a Chaos family variant. The…
Pope/Vatican Ransomware
A recent case saw “Vatican” ransomware strike, renaming files to “filename.POPE” and displaying a multi-language ransom pop-up referencing the Vatican…
007 Ransomware
A recent case saw a Windows system infected by a discovered strain named “007,” which added a “.007” suffix to…
UraLocker Ransomware
You log into your PC and discovering every document, photo, and project file renamed with a strange new extension: “.rdplocked.” Alongside the…
KaWaLocker
A recent incident within a mid-sized European logistics firm illustrates the emerging threat of KaWaLocker. After an unsuspecting employee opened…
THRsx Ransomware
A recent case involved a small business in Europe whose critical documents—spreadsheets, contracts, and images—were encrypted overnight. The attackers replaced…
Basta (Makop) Ransomware
A recent incident showcased a mid-sized enterprise crippled by unexpected file encryption: documents, images, and databases rendered inaccessible overnight. This…
Conti Ransomware
A whistleblower leak in May 2025 exposed senior Conti operators and sent the group spiraling into dissolution. Yet Conti’s legacy—ransomware-as-a-service…
DataLeak Ransomware
DataLeak is a potent ransomware threat from the MedusaLocker family, discovered June 16, 2025. It combines file encryption with data exfiltration,…
AMERILIFE Ransomware
AMERILIFE is a recently identified ransomware strain that encrypts victims’ files, appending a .ameriwasted extension. Victims are then coerced into contacting hackers…
Chewbacca Ransomware
Chewbacca is a ransomware strain that encrypts significant files—like documents, photos, databases—with a unique extension and demands a ransom for decryption. It…
Backups Airmail CC Ransomware
Backups Airmail CC Ransomware is a highly dangerous computer virus from the widespread STOP/DJVU ransomware family. It infiltrates systems through…
CryptoLock2025
CryptoLock2025 is the newest iteration of file-encrypting ransomware sweeping corporate networks and individual PCs alike. Once inside a victim’s system,…
