Summary: Cybersecurity researchers have identified a new AI-assisted ransomware group called FunkSec, which has targeted over 85 victims since its emergence in late 2024. The group employs double extortion tactics and operates under a ransomware-as-a-service model, with connections to hacktivist activities.
Threat Actor: FunkSec | FunkSec
Victim: Various organizations | various organizations
Key Point :
- FunkSec uses double extortion tactics, combining data theft with encryption to pressure victims.
- The group has launched a data leak site to centralize operations and promote their ransomware services.
- Many victims are located in the U.S., India, and several other countries.
- FunkSec’s actors may have connections to hacktivism, particularly with the “Free Palestine” movement.
- The ransomware, FunkSec V1.5, is written in Rust and employs advanced evasion techniques.
Source: https://thehackernews.com/2025/01/ai-driven-ransomware-funksec-targets-85.html