That means that alongside these large-scale hacks of major corporations, Ransomed.vc (which VGC claims operates out of Russia and Ukraine) also reportedly works with the EU's general data protection and regulation (GDPR) and other data privacy laws to report vulnerabilities in company systems and violations in the laws.According to Cyber Security Connect, the group is leveraging laws to reportedly bully victims into submission.