RansomedVC
RansomedVC is presented in the provided reporting as a purported ransomware/data-leak extortion operation associated with fictitious or unverified breach claims rather than a clearly validated ransomware campaign.
Profile source: Mallory opens in a new tabRansomedVC
Family profile
RansomedVC is presented in the provided reporting as a purported ransomware/data-leak extortion operation associated with fictitious or unverified breach claims rather than a clearly validated ransomware campaign. The content places it alongside other cybercrime scam or impersonation efforts and cites reporting from Jon DiMaggio of Analyst1 that, in 2023, RansomedVC claimed to have stolen customers’ personally identifiable information from State Farm Insurance and from NTT Docomo, but the purported stolen datasets in those cases were assessed to be entirely fictitious and used in attempted extortion. Separate reporting referenced in the content states that RansomedVC later reappeared after a hiatus and leaked Medusa-related data/chats. High-confidence details in the source do not confirm a functioning ransomware executable, specific infection vector, ransom note, or technical indicators of compromise for RansomedVC. Based on the provided content, the most defensible characterization is that RansomedVC operated as a named extortion or leak-brand making false or unverified data-theft claims, including claims involving customer PII, with no validated breach evidence included here.
Ransomware.live
Operational record
Reporting
Research mentioning RansomedVC
Fake Out: 0APT Data-Leak Ransomware Group Branded a Scam
Before that group came a group calling itself RansomedVC, which in 2023 claimed to have stolen customers' personally identifiable information...
⚡ Weekly Recap: Scattered Spider Arrests, Car Exploits, macOS Malware, Fortinet RCE and More
"RansomedVC Returns After Hiatus; Leaks Medusa Data — The RansomedVC ransomware group has returned after a two-year absence..."