PROBABLYPWNED
Home/Ransomware News

Ransomware News

Track the latest ransomware attacks, malware campaigns, and threat actor activity. Analysis of ransomware gangs, decryption tools, and defense strategies.

339Malware Articles
Armored Likho APT Hits Power Grids With AI-Generated Malware
Threat Intelligence3 min read

Armored Likho APT Hits Power Grids With AI-Generated Malware

New threat group Armored Likho targets government agencies and power sectors in Russia, Brazil, and Kazakhstan using BusySnake Stealer—malware with AI-generated loader code and reverse SSH tunneling capabilities.

Alex KowalskiJul 6, 2026
ResiLoader Kills 140+ Security Tools Before Deploying StealC
Malware3 min read

ResiLoader Kills 140+ Security Tools Before Deploying StealC

Malwarebytes documents a new loader that abuses a legitimate driver to terminate EDR processes, then uses process hollowing to inject the StealC infostealer through fake Google and Cloudflare verification pages.

James RiveraJul 3, 2026
PamStealer Validates Your Mac Password Before Stealing It
Malware4 min read

PamStealer Validates Your Mac Password Before Stealing It

Jamf Threat Labs uncovers a macOS infostealer that impersonates the Maccy clipboard manager, validates credentials through PAM, then harvests browser data, crypto wallets, and iCloud Keychain.

James RiveraJul 3, 2026
Steam Workshop Wallpapers Spread Infostealers, Backdoors
Malware4 min read

Steam Workshop Wallpapers Spread Infostealers, Backdoors

Kaspersky uncovers malware campaign using Wallpaper Engine's Steam Workshop to distribute DarkKomet, Lumma, and Vidar. China-focused attacks stole Steam accounts and deployed cryptominers.

James RiveraJun 16, 2026
Conti Ransomware Developer Pleads Guilty, Faces 20 Years
Threat Intelligence4 min read

Conti Ransomware Developer Pleads Guilty, Faces 20 Years

Ukrainian national Oleksii Lytvynenko admits to developing loader malware for the Conti ransomware gang after extradition from Ireland. Sentencing set for September 2026.

Alex KowalskiJun 16, 2026

Related Data Breaches

AssuranceAmerica Breach Exposes 6.9M Driver's License Numbers
Data Breaches4 min read

AssuranceAmerica Breach Exposes 6.9M Driver's License Numbers

Insurance provider AssuranceAmerica disclosed a data breach affecting 6.9 million customers—the largest known exposure of driver's license numbers in 2026. Attackers compromised employee credentials.

Sarah MitchellJul 11, 2026

Understanding the Ransomware Threat

Ransomware remains one of the most damaging cyber threats facing organizations today. Our coverage tracks active ransomware gangs, new malware variants, attack campaigns, and the evolving tactics used by threat actors.

We analyze ransomware-as-a-service (RaaS) operations, infostealer malware, banking trojans, and nation-state malware campaigns. Each article includes indicators of compromise (IOCs), MITRE ATT&CK mappings, and practical defense recommendations.

New to ransomware? Read our comprehensive guide: What is Ransomware? For broader malware education, see What is Malware?

Notable Ransomware Groups We Track

LockBitActive
ALPHV/BlackCatDisrupted
AkiraActive
PlayActive
Cl0pActive
Black BastaActive
RoyalRebranded
Scattered SpiderActive

All Hacking News

Browse all cybersecurity news including breaches, vulnerabilities, and threat intel.

What is Ransomware?

Complete guide to understanding ransomware attacks and how to prevent them.

Threat Intelligence

APT tracking, nation-state campaigns, and threat actor analysis.