Ransomware, Network Security, Data Security

Massive data leak conducted by HelloKitty ransomware amid rebrand

April 22, 2024

Malware attack virus alert. Person use laptop with virtual warning sign with ransomware word. warning notification, Cyber threats.

Credit: Adobe Stock Images

Ransomware operation HelloKitty coincided its rebranding to HelloGookie with the publication of internal Cisco network data exfiltrated from a 2022 attack, exfiltrated source code for several CD Projekt Red games from a 2021 attack, and four private decryption keys for other intrusions that involved an older iteration of its ransomware encryptor, according to BleepingComputer.

HelloGookie, which has not yet touted any new victims, noted on its data leak site that it had a list of Cisco NTLM hashes that were exfiltrated during a breach, which is believed to be conducted by the Yanluowang ransomware attack.

Meanwhile, more than 400GB of uncompressed information were included in the exposed CD Projekt Red data, which included source code for the company's "The Witcher 3," "Cyberpunk," and "Gwent" titles, as well as numerous console SDKs and build logs, said sventek, who is one of the developers who have compiled Witcher 3 from the leaked data.

An In-Depth Guide to Ransomware

Get essential knowledge and practical strategies to protect your organization from ransomware attacks.

Learn More

SC Staff

The FBI seal is seen on its headquarters at the J. Edgar Hoover FBI building in Washington.

Phishing

FBI warns of couriers collecting crypto scam payments

SC StaffJune 15, 2026

As reported by Bleeping Computer, the U.S. Federal Bureau of Investigation (FBI) has issued a warning regarding a trend in cryptocurrency investment scams, commonly known as "pig butchering" or "romance baiting."