Ragnarlocker

Malware updated 25 days ago (2024-08-14T10:18:14.457Z)

Download STIX

Preview STIX

RagnarLocker is a type of malware, specifically ransomware, that first emerged in 2021. This malicious software is designed to exploit and damage computer systems by infiltrating them through suspicious downloads, emails, or websites, often unbeknownst to the user. Once inside a system, RagnarLocker can steal personal information, disrupt operations, or hold data hostage for ransom. It has been observed being transferred over HTTP/S and via email as a compressed attachment. In one notable instance, a variant of RagnarLocker was used to encrypt a company's files during an attack. Throughout its existence, RagnarLocker has been a significant threat in the cyber landscape. However, concerted efforts from international law enforcement agencies such as Interpol, the FBI, and Europol have been made to dismantle cybercriminal networks like those behind RagnarLocker. Following the demise of other major threats like Hive and Qakbot earlier in the year, RagnarLocker's dark web portal was seized by police led by Europol in October. This action resulted in the removal of RagnarLocker from the threat actor landscape, marking a partial success in the fight against cybercrime. Despite these successes, challenges remain. Cyber extortion ecosystems have become increasingly sophisticated, often outpacing the operational effectiveness of law enforcement agencies tasked with disruption. Although 2023 saw significant takedowns of prominent gangs, including Hive in January and RagnarLocker later in the year, these actions have had limited impact on a wider scale. As the battle against cybercrime continues, it is clear that ongoing vigilance and innovation will be required to keep pace with evolving threats.

Description last updated: 2024-08-14T09:31:43.583Z

What's your take? (Question 1 of 2)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Ransomware

Encrypt

Linux

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Source Document References

Information about the Ragnarlocker Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
Securityaffairs	a month ago	A Fortune 50 company paid a record-breaking $75 million ransom
CERT-EU	a year ago	Major Cybersecurity Breach at Johnson Controls Sparks National Security Concerns
CERT-EU	8 months ago	Lawmakers must build on Feds’ ransomware success in 2024 • The Register \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
CERT-EU	9 months ago	BlackCat ransomware site down amidst rumours of law enforcement action \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
CERT-EU	9 months ago	BlackCat ransomware gang taken down by law enforcement sting? \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
CERT-EU	9 months ago	2023 may have seen highest ransomware ‘body count’ yet \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
CERT-EU	9 months ago	Ransomware attacks up 81% year-on-year in October \| #ransomware \| #cybercrime \| National Cyber Security Consulting
CERT-EU	10 months ago	Japanese Watchmaking Giant Seiko Confirms Personal Data Stolen in Ransomware Attack
CERT-EU	a year ago	RagnarLocker Ransomware, LokiLocker Ransomware, and More: Hacker’s Playbook Threat Coverage Round-up: September 27th, 2023
CERT-EU	10 months ago	DC elections agency warns voting roll may have been stolen
Secureworks	2 years ago	Ransomware Evolution
CERT-EU	a year ago	E-Root marketplace credential-selling admin extradited to US
CERT-EU	a year ago	Ragnar Locker ransomware’s dark web extortion sites seized by police
CERT-EU	a year ago	Ragnar Locker ransomware developer arrested in France
CERT-EU	a year ago	Police seize Ragnar Locker leak site
Securityaffairs	a year ago	Ragnar Locker gang leaks data stolen from the Israel's Mayanei Hayeshua hospital
CERT-EU	a year ago	The Week in Ransomware - October 20th 2023 - Fighting Back
CERT-EU	10 months ago	Spanish cops bust multi-million-euro phishing, ID theft ring
Securityaffairs	a year ago	Dark Angels Team ransomware group hit Johnson Controls
Securityaffairs	a year ago	Law enforcement operation seized Ragnar Locker group's infrastructure