Play Ransomware Attack Cases Detected by AhnLab EDR

Play Ransomware Attack Cases Detected by AhnLab EDR

Play ransomware, also known as Balloonfly or PlayCrypt, was first identified in June 2022 and has reportedly attacked over 300 organizations worldwide since then. A notable characteristic of the ransomware, which remains actively in use, is its addition of the “.PLAY” extension to files following encryption. Like other ransomware threat

Ransom & Dark Web Issues Week 4, December 2024

Ransom & Dark Web Issues Week 4, December 2024

ASEC Blog publishes Ransom & Dark Web Issues Week 4, December 2024           LockBit ransomware gang: Announces return with the release of version 4.0 despite the arrest of key member Rostislav Panev World’s largest donut brand, posted as a new victim of Play ransomware. Data from

October 2024 Threat Trend Report on Ransomware

October 2024 Threat Trend Report on Ransomware

This report provides statistics on the number of new ransomware samples, targeted systems, and targeted businesses in October 2024, as well as notable ransomware issues in Korea and other countries. The following is a brief summary. The number of ransomware samples and targeted systems are based on the detection names