DeadBolt Ransomware encrypts user data on networked QNAP NAS devices using the AES-128 algorithm and then demands a ransom of 0.03 BTC (~$1100) to get the files back. At the same time, the original html page of the NAS devices is replaced with one prepared by ransomware.

TellYouThePass ransomware was an old dormant ransomware supposed to be dead. But Log4j's Log4Shell vulnerability, resurrect it and it jumps into action once again. It targets mostly Chinese speaking population.

ALPHV BlackCat Ransomware or simply BlackCat Rasomware is an advance and a sophisticated piece of malware written in Rust programming language. It encrypts data of business users and corporate networks using a combination of AES-128 (CTR mode) and RSA-2048 algorithms, and then requires a large ransom in BTC or Monero for the decryption key.

Cerber Ransomware encrypt Windows and Linux machines by exploiting Atlassian Confluence (CVE-2021-26084) and GitLab (CVE-2021-22205) servers remote code execution vulnerabilities.

Hacker skim sensitive information from e-commerce website by deploying malware dubbed as linux_avp which is written in golang. Analysis of linux_avp suggests that it serves as backdoor, waiting for commands from a Alibaba hosted server 47.113.202.35