Bearlyfy Ransomware Strikes 70+ Russian Companies – Veri Sızıntısı
Live
Search
Company
About Founder's Note Press & Media Privacy Policy Terms of Service FAQ Brand Kit
Products
HUBOne HUBCorp Coming Soon Veri Sızıntısı Android Coming Soon Veri Sızıntısı iOS Coming Soon Veri Sızıntısı Huawei Coming Soon Breach Radar Argus Flow Argus Engine LivePlatform
Technologies
What is Argus AI? Try on HUBOne What is Argus Flow? What is Argus Engine?
Blog Contact

Bearlyfy Ransomware Attacks Over 70 Russian Firms

Cybersecurity group Bearlyfy has launched a ransomware attack targeting more than 70 Russian companies. The attack utilized a custom variant of GenieLocker ransomware, causing significant disruption and data encryption.

Bearlyfy Ransomware Attacks Over 70 Russian Firms

Bearlyfy Ransomware Attacks Over 70 Russian Firms

A recent cyberattack attributed to the threat group Bearlyfy has impacted more than 70 organizations across Russia. The sophisticated campaign deployed a customized version of the GenieLocker ransomware, leading to widespread system disruption and data encryption within the affected entities.

Details of the Attack

The attacks, which surfaced on March 27, 2026, targeted a diverse range of Russian firms. Bearlyfy's use of a custom variant of GenieLocker suggests tailored malicious capabilities, potentially designed to bypass specific security measures or exploit vulnerabilities prevalent within the targeted sector.

  • Affected Entities: Over 70 Russian companies.
  • Malware Used: Custom GenieLocker ransomware.
  • Impact: Data encryption, operational disruption, potential data exfiltration (common in modern ransomware attacks).
  • Attribution: Bearlyfy threat group.

Understanding GenieLocker Ransomware

GenieLocker ransomware typically operates by encrypting files on compromised systems, rendering them inaccessible to legitimate users. Attackers then demand a ransom payment, usually in cryptocurrency, in exchange for a decryption key. The "custom" aspect of this variant indicates modifications that could include enhanced evasion techniques, more robust encryption, or additional functionalities like data exfiltration for double extortion.

Has your email been leaked? Check for free — results in seconds.

Check Now →

Organizations affected by ransomware attacks often face significant financial losses due to operational downtime, recovery costs, and potential reputational damage. Responding to such incidents requires immediate containment, thorough investigation, and robust recovery strategies.

Recommendations for Cybersecurity Defense

To mitigate the risks associated with ransomware attacks, cybersecurity experts emphasize several critical measures:

  • Regular Backups: Implement and test comprehensive backup solutions, ensuring offline copies of critical data.
  • Patch Management: Keep all software and operating systems updated to patch known vulnerabilities.
  • Employee Training: Educate employees on phishing attempts and suspicious links, as social engineering is a common initial access vector.
  • Network Segmentation: Segment networks to limit the lateral movement of ransomware if an infection occurs.
  • Endpoint Detection and Response (EDR): Utilize EDR solutions for advanced threat detection and response capabilities.
  • Incident Response Plan: Develop and regularly update an incident response plan to ensure a swift and effective reaction to cyber incidents.

Source

https://thehackernews.com/2026/03/bearlyfy-hits-70+russian-firms-with.html

Share This Article
X LinkedIn WhatsApp
← Previous Post Hightower Holding Data Breach Affects 130,000 Individuals Next Post → TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing

Weekly Newsletter

Curated data breach news delivered to your inbox every week.