Launched on March 7, 2025, the VanHelsing ransomware-as-a-service (RaaS) operation has quickly targeted multiple victims. It employs a model that enables various affiliates, from seasoned hackers to novices, to participate with a $5,000 deposit. Notably, it utilizes a double extortion method, encrypting files and then threatening to leak stolen data. The ransomware supports various operating systems and comes with a user-friendly control panel. Most concerning is its swift rise, having targeted sectors like government, manufacturing, and pharmaceuticals in France and the United States.
The RaaS model allows a wide range of participants, from experienced hackers to newcomers, to get involved with a $5,000 deposit.
VanHelsing claims to offer the ability to target a wide range of operating systems, including Windows, Linux, BSD, Arm, and ESXi.
What makes VanHelsing notable is that it allows reputable affiliates to join for free, while new affiliates are required to pay a $5,000 deposit.
The ransomware uses a double extortion model of stealing data prior to encryption, threatening to leak information unless the victim pays.
Collection
[
|
...
]