PanelActoresCampanasMapaTTPs
Panel » Actores » reynolds
ClassicBrechasMapaActoresTTP MatrixAnaliticaAlertasCyberNewsArsenalExploitsKillChainOrigenSSLBLRansomLook
Logo del actor de amenaza reynolds

reynolds

2 incidentes 1 paises 1 sectores ransomware Ultimo: 2026-05-25
Ver en IntelTracker → APTTrail →
Reynolds is a ransomware group that emerged in February 2026, distinguishing itself by embedding a Bring Your Own Vulnerable Driver (BYOVD) component directly within its ransomware payload, rather than deploying it as a separate tool for defense evasion. This unique approach simplifies attack execution, reduces the operational footprint, and significantly narrows the window for defenders to respond. Initially, the group's activity was sometimes misattributed to the Black Basta ransomware group due to similar tactics, but further analysis confirmed Reynolds as a distinct and emergent ransomware family. The group's primary motivation is financial gain through data encryption and extortion.

RansomLook pivots

Data, inteligencia y referencias externas para contrastar actividad ransomware del actor.

Abrir perfil →
Data
RecentBrowseTrendingStats
Intel
GroupURLsCryptoLeaksNotesAnalysesTorrents
Info
APIGlossaryAbout
Victimas
1
TTPs unicas
0
Info robada historica
N/D
Rescates reclamados
N/D
Pagos detectados
N/D

Paises afectados

United States (1)

Paises objetivo (SOCRadar)

United KingdomUnited States

Sectores atacados

Business Services (1)

Sectores objetivo (SOCRadar)

Energy & Utilities Information ServicesFinanceProfessional&Technical ServicesEnterprises & HoldingPublic AdministrationTelecommunicationsAdministrative & Support ServicesSpace & DefenseNational Security&International Affairs

Victimas (1)

falconmgt.com13 Nov 2025
Ransomware United States Business Services
Resumen Se ha detectado una alerta de ransomware relacionada con el dominio falconmgt.com, propiedad de la empresa Falcon Management Corp., fundada en…