Bearlyfy, a pro‑Ukrainian hacker group, has carried out more than 70 attacks on Russian companies since January 2025 and escalated from low‑skill, small‑ransom operations to demanding hundreds of thousands of dollars while seeking both political damage and financial gain. Researchers say the group has developed and begun deploying its own Windows ransomware, GenieLocker, after previously using leaked tools like LockBit 3 Black and Babuk, and roughly one in five victims pays the ransom. #Bearlyfy #GenieLocker
Keypoints
- Bearlyfy has executed over 70 cyberattacks against Russian companies since January 2025.
- The group’s ransom demands have grown from a few thousand dollars to hundreds of thousands.
- Bearlyfy combines political motives with financial extortion, with about 20% of victims paying.
- Since early March, the group has deployed custom Windows ransomware named GenieLocker.
- Earlier operations relied on leaked tools such as LockBit 3 Black and Babuk, and the group has collaborated with actors like Head Mare.
Read More: https://therecord.media/ransomware-ukraine-russia-bearlyfy