{
	"id": "1579c8df-0e2a-45e3-b4d5-f6b5dd7eaa8c",
	"created_at": "2026-04-06T00:20:19.553796Z",
	"updated_at": "2026-04-10T13:11:47.957823Z",
	"deleted_at": null,
	"sha1_hash": "e8264c0383bf06c514418d82a2a029f797d8536d",
	"title": "Cyber threat startup Cygilant hit by ransomware",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 37730,
	"plain_text": "Cyber threat startup Cygilant hit by ransomware\r\nBy Zack Whittaker\r\nPublished: 2020-09-03 · Archived: 2026-04-05 23:36:26 UTC\r\n4:55 PM PDT · September 3, 2020\r\nCygilant, a threat detection cybersecurity company, has confirmed a ransomware attack.\r\nChristina Lattuca, Cygilant’s chief financial officer, said in a statement that the company was “aware of a\r\nransomware attack impacting a portion of Cygilant’s technology environment.”\r\n“Our Cyber Defense and Response Center team took immediate and decisive action to stop the progression of the\r\nattack. We are working closely with third-party forensic investigators and law enforcement to understand the full\r\nnature and impact of the attack. Cygilant is committed to the ongoing security of our network and to continuously\r\nstrengthening all aspects of our security program,” the statement said.\r\nCygilant is believed to be the latest victim of NetWalker, a ransomware-as-a-service group, which lets threat\r\ngroups rent access to its infrastructure to launch their own attacks, according to Brett Callow, a ransomware expert\r\nand threat analyst at security firm Emsisoft.\r\nThe file-encrypting malware itself not only scrambles a victim’s files but also exfiltrates the data to the hacker’s\r\nservers. The hackers typically threaten to publish the victim’s files if the ransom isn’t paid.\r\nA site on the dark web associated with the NetWalker ransomware group posted screenshots of internal network\r\nfiles and directories believed to be associated with Cygilant.\r\nCygilant did not say if it paid the ransom. But at the time of writing, the dark web listing with Cygilant’s data had\r\ndisappeared.\r\nTechcrunch event\r\nSan Francisco, CA | October 13-15, 2026\r\n“Groups permanently delist companies when they’ve paid or, in some cases, temporarily delist them once they’ve\r\nagreed to come to the negotiating table,” said Callow. “NetWalker has temporarily delisted pending negotiations in\r\nat least one other case.”\r\nAs ransomware gets craftier, companies must start thinking creatively\r\nTopics\r\nboston, crimes, cyberattacks, cybercrime, Cygilant, dark web, Emsisoft, malware, massachusetts, ransomware,\r\nSecurity, security, security breaches, Startups\r\nhttps://techcrunch.com/2020/09/03/cygilant-ransomware/\r\nPage 1 of 2\n\nZack Whittaker is the security editor at TechCrunch. He also authors the weekly cybersecurity newsletter, this\r\nweek in security.\r\nHe can be reached via encrypted message at zackwhittaker.1337 on Signal. You can also contact him by email, or\r\nto verify outreach, at zack.whittaker@techcrunch.com.\r\nView Bio\r\nSource: https://techcrunch.com/2020/09/03/cygilant-ransomware/\r\nhttps://techcrunch.com/2020/09/03/cygilant-ransomware/\r\nPage 2 of 2",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"origins": [
		"web"
	],
	"references": [
		"https://techcrunch.com/2020/09/03/cygilant-ransomware/"
	],
	"report_names": [
		"cygilant-ransomware"
	],
	"threat_actors": [],
	"ts_created_at": 1775434819,
	"ts_updated_at": 1775826707,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/e8264c0383bf06c514418d82a2a029f797d8536d.pdf",
		"text": "https://archive.orkl.eu/e8264c0383bf06c514418d82a2a029f797d8536d.txt",
		"img": "https://archive.orkl.eu/e8264c0383bf06c514418d82a2a029f797d8536d.jpg"
	}
}