Nefilim which is a new version of Nemty Ransomware is released in wild. Nefilim is distributed via exposed Remote Desktop Services unlink its predecessor Nemty.

A new ransomware called PwndLocker appeared in early March , targeting corporate networks. In the following weeks, the ransomware changed to ProLock Ransomware.

CoronaVirus ransomware authors decided to play on the high-profile name of the virus epidemic COVID-19 (abbreviation as CO rona VI rus D isease 2019), abbreviated CoronaVirus .It encrypts user data using AES, and then requires a ransom of 0.008 - 0.05 #BTC which is around $50 in order to return the files.

PwndLocker Ransomware is attacking the networks of companies and local governments in the United States (USA). Attackers demand a ransom that can range from 175,000 to 660,000 US dollars.In the ransom message, the attackers say they will keep the decryptor for a month and urge victims to contact them within two days to get a "discount".

Ekati ransomware encrypts user data using AES, and then displays a message that contains a link to start decryption. Ransomware execuatble name is Ekati and hence the name. Reverse malware analysis reveals that it is version is 2.0.0.0 and author name specified as Lee Wei.