MyDecryptor is a low-profile ransomware group that operates with minimal public documentation and is also known by the alias Magniber. The group first emerged in 2017, conducting tailored ransomware attacks primarily targeting businesses and organizations. MyDecryptor's activity has been episodic, with notable resurgences after periods of dormancy, such as in summer 2021 and February 2022 following a silent period since 2019. Its primary motivation is financial gain through extortion. A distinguishing characteristic of MyDecryptor, particularly under its Magniber alias, is its use of random file extensions for each victim group, making detection and public tracking more challenging. The group employs double extortion tactics, threatening to publish stolen data if ransom demands are not met, alongside aggressive negotiation and leveraging data leak sites to pressure victims.

URLs nuevas detectadas en IntelTracker