Clop is the Russian word for "bug" (bed bug). CLOP Ransomware is attributed to TA505 APT.It can be land on its victim machine by hacking through an insecure RDP configuration, using email spam and malicious attachments.

Nefilim which is a new version of Nemty Ransomware is released in wild. Nefilim is distributed via exposed Remote Desktop Services unlink its predecessor Nemty.

A new ransomware called PwndLocker appeared in early March , targeting corporate networks. In the following weeks, the ransomware changed to ProLock Ransomware.

CoronaVirus ransomware authors decided to play on the high-profile name of the virus epidemic COVID-19 (abbreviation as CO rona VI rus D isease 2019), abbreviated CoronaVirus .It encrypts user data using AES, and then requires a ransom of 0.008 - 0.05 #BTC which is around $50 in order to return the files.

PwndLocker Ransomware is attacking the networks of companies and local governments in the United States (USA). Attackers demand a ransom that can range from 175,000 to 660,000 US dollars.In the ransom message, the attackers say they will keep the decryptor for a month and urge victims to contact them within two days to get a "discount".