
Prinz Eugen, a ransomware program written in Go that primarily targets recent files
On May 11, 2026, the ThreatDown research team analyzed an unknown encryptor recovered during a breach at one of its clients’ sites. The ransomware, named

On May 11, 2026, the ThreatDown research team analyzed an unknown encryptor recovered during a breach at one of its clients’ sites. The ransomware, named

In February 2026, ESET researchers responded to an incident involving an affiliate of The Gentlemen. On the compromised machine, a staging directory caught their attention:

On May 26, 2026, the FBI issued a FLASH alert (FLASH-20260526-01, TLP:CLEAR) regarding the Silent Ransom Group. In it, the Bureau documents an unprecedented escalation:

38 claimed victims in just over a year, post-quantum-resistant hybrid encryption, and a ransom note threatening to notify regulators and alert the victim’s competitors. First

More than 120 active ransomware brands in a single year. These are the findings that open the 2026 edition of the Internet Organised Crime Threat

In 2025, just 19% of non-encrypted extortion victims paid, according to Coveware. Instructure has just joined this minority. On May 11, 2026, the publisher of

On May 4, 2026, the administrator of RaaS program The Gentlemen admitted on an underground forum that part of his internal database had been leaked.

On May 7, 2026 at 17:06 UTC, a Reddit user reported that installers downloaded from the official JDownloader website triggered a Windows Defender alert. Eighteen

On April 6, 2026, Microsoft Threat Intelligence published a consolidated analysis of the operations of Storm-1175, a China-based cybercriminal actor it has been tracking since

Booking.com customer reservation data is in the hands of attackers, and is already being used for targeted phishing campaigns. On April 13, 2026, the online

Having an EDR is no longer a guarantee. In recent attacks, Qilin affiliates have deployed a dedicated module capable of disabling over 300 threat detection

More than 200 victims in just over a year, an increasingly sophisticated GB payload, and, in its early days, a server hostname that displayed the