The FBI has reported that the Play ransomware gang has compromised approximately 900 organizations by May 2025, significantly increasing from previous reports. The group employs recompiled malware and uses extortion tactics involving stolen data to pressure victims into paying ransoms. #Playcrypt #DarkWebLeakSite
Keypoints
- The Play ransomware gang has affected around 900 organizations worldwide as of May 2025.
- The group reuses recompiled malware to evade detection and security solutions.
- Victims are often contacted via phone and threatened with data leaks unless they pay ransom.
- Exploited vulnerabilities (CVE-2024-57726/27/28) are used by initial access brokers to breach organizations.
- Security recommendations include updating systems, enabling MFA, and maintaining offline backups.
Views: 21