ADVERTISEMENT

Interlock ransomware gang running amock, targeting North America and Europe, CISA warns

The US Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday is warning businesses in North America and Europe to harden their systems against a new Interlock ransomware variant.

prompt injection attack

Image by Cybernews.

Stefanie Schappert
Stefanie Schappert Senior Journalist
Jul 22, 2025 Updated: 23 July 2025 3 min read
Key takeaways:

JavaScript to PHP

Ernestas Naprys Gintaras Radauskas Marcus Walsh profile vilius
Don’t miss our latest stories on Google News
Add us as your Preferred Source on Google.
Interlock Kongtube FileFix  malware campaign
The linked JavaScript first prompts the user to click a captcha to “Verify you are human” followed by “Verification steps” to open a run command and paste in from the clipboard. Once pasted, it executes a PowerShell script, eventually leads to Interlock RAT. Image by The DFIR Report and Proofpoint.
ADVERTISEMENT

World Secrets Blog

Interlock leak site
Interlock leak site. Image by Cybernews.
July 2025
Cybernews Ransomlooker tool. Image by Cybernews.
ADVERTISEMENT