incident
DragonForce Ransomware Cartel Targets UK Retailers with Custom Payloads and RaaS ModelDragonForce
SentinelOne reports that the DragonForce ransomware gang, originally a hacktivist group, has evolved into a financially motivated Ransomware-as-a-Service cartel. The group recently attacked major UK retailers including Harrods, Marks & Spencer, and the Co-Op, using custom ransomware based on Conti v3 code. DragonForce operates a multi-extortion model with a leak site called RansomBay and offers affiliates a web panel to customize payloads for Windows, Linux, ESXi, and NAS systems.