CSOonline

New ransomware Yurei adopts open-source tools for double-extortion campaigns

The new group relies on data theft and encryption, but coding errors in its ransom note routine expose weaknesses that defenders can exploit. A new ransomware group called Yurei has surfaced, adopting ...
Dark Reading

Emerging Yurei Ransomware Claims First Victims

A new ransomware operator has emerged that relies on open source malware to launch double-extortion attacks that have claimed several victims. However, its ransomware has a flaw that gives victims a ...
Bleeping Computer

Hackers now use Velociraptor DFIR tool in ransomware attacks

Threat actors have started to use the Velociraptor digital forensics and incident response (DFIR) tool in attacks that deploy LockBit and Babuk ransomware. Cisco Talos researchers assess with medium ...
Dark Reading

Chinese Hackers Use Velociraptor IR Tool in Ransomware Attacks

A China-based threat group known as Storm-2603 has added a new weapon to its hacking arsenal. Cisco Talos researchers observed Storm-2603 abusing Velociraptor, an open source digital forensics and ...
Bleeping Computer

Evolution of Ransomware: Multi-Extortion Ransomware Attacks

In February 2026, the University of Mississippi Medical Center (UMMC) fell victim to a ransomware attack. The incident took the Epic electronic health record system offline across 35 clinics and more ...