Pro-Ukraine hacker group Bearlyfy targets Russian companies with custom ransomware

A pro-Ukrainian hacker group, Bearlyfy, has launched over 70 cyberattacks on Russian companies in the past year, with a recent escalation involving the use of custom-built ransomware tools. This surge in attacks underscores the group's capabilities and intentions to disrupt Russian business operations. The deployment of bespoke ransomware signifies a heightened level of sophistication, allowing Bearlyfy to tailor its attacks to specific targets. Researchers have identified this trend as a notable development in the ongoing cyber conflict between Ukraine and Russia¹. The use of custom ransomware enables the group to evade detection and exploit vulnerabilities in Russian companies' systems. As the conflict continues to unfold, the emergence of such targeted ransomware attacks poses significant risks to operational resilience. So what matters most to cybersecurity practitioners is that this campaign highlights the importance of sector-specific risk assessment and proactive planning to mitigate potential disruptions.