This WastedLocker ransomware encrypts the data of companies, business users, the content of their websites and servers using AES-256 (CBC mode) + RSA-4096, and then demands a ransom in BTC to get the files back.
Phoenix CryptoLocker Ransomware force the insurance giant CNA to halt and disconnect its services. That is might be work of Evil Crop because of code similarities between there previous locker.
BlackKingdom ransomware is another ransomware, known so far, that is actively exploiting the Microsoft Exchange Server ProxyLogon vulnerabilities.
ATMii targets ATMs running Windows 7 and Windows Vista. ATMii is pretty straightforward, it consists of two modules Control module 'exe.exe' and injecting module 'dll.dll'.
DearCry Ransomware or as Microsoft debut it as DoejoCrypt Ransomware is targeting new zero-day ProxyLogon vulnerabilities in Microsoft Exchange servers. It uses AES-256 to encrypt the files and the RSA-2048 public key to encrypt the AES key.
