Termite ransomware breaches linked to ClickFix CastleRAT attacks

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.
JD Supra

Robbinhood ransomware hacker pleads guilty to charges stemming from 2019 attack on Baltimore

Sina Gholinejad, an Iranian hacker involved in the 2019 international extortion scheme against the City of Baltimore using the Robbinhood ransomware, pleaded guilty to computer fraud and wire fraud ...
Yahoo

Iranian man pleads guilty in US to 2019 Baltimore ransomware attack

(Reuters) -An Iranian national pleaded guilty to participating in the high-profile 2019 Baltimore, Maryland, ransomware attack, among others, and to causing tens of millions of dollars in losses and ...
The Daily Reflector

Man pleads guilty in 2019 ransomware attacks that targeted Greenville, other cities

An Iranian national pleaded guilty Tuesday in 2019 cyberattacks that disabled computer networks operated by the City of Greenville and a half dozen other cities and organizations, the U.S. Attorney’s ...
WBAL-TV

Iranian man pleads guilty to role in Robbinhood ransomware attack on Baltimore City, US DOJ says

SHUT DOWN. >> NOT TODAY. OUR SYSTEMS ARE DOWN. EVERYTHING. I’M SORRY. REPORTER: THIS IS WHAT IT CAME TO ON TUESDAY. CITY WORKERS, AT THE FRONT DOOR OF THE WOLMAN MUNICIPAL BUILDING, SPREADING THE WORD ...
Infosecurity-magazine.com

AI-Generated Lcryx Ransomware Discovered in Cryptomining Botnet

A cryptomining botnet that has been active since 2019 has added a likely AI-generated ransomware to its operations. New analysis by FortiCNAPP team, part of FortiGuard Labs, has identified the first ...