Reynolds

Active
Reynolds is a ransomware family first identified in early 2026, notable for embedding BYOVD (Bring Your Own Vulnerable Driver) defense evasion by exploiting CVE-2025-68947 to terminate security software before encrypting files, initially attributed to Black Basta and considered attractive to RaaS affiliates.
1 Victims
Nov 12, 2025 First Discovered
Nov 12, 2025 Last Discovered
127 Days Inactive
0% Infostealer
1/1 Sites Online
Top Countries
US 1
Top Sectors
Business Services 1
Known Locations (1)
Reynolds
bs2tlg32pfjwmclm22cyngqmoo24cdlhfxzbruwrdaxumisfeory32qd.onion
Intelligence
📄 1 Ransom Notes
View the actual ransom notes used by this group
Victims (1)
falconmgt.com
US Business Services Discovered: Feb 11, 2026 · Attack est.: Nov 12, 2025
Falcon Management Corp. was founded in 1991. The company's line of business includes providing financial planning and investment advisory services.
Source: Ransomware.live | Data cached and served by Digital Checkmark IT Services | Ransomware Tracker