Intrusions, which were noted by BleepingComputer and ID-Ransomware to have increased in prevalence since July 20, were reported by some victims to have resulted in device encryption following the execution of cracked software and key generators. Aside from appending random extensions to encrypted files, Magniber also created a ransom note including a link to the ransomware gang’s Tor site.

Source: SC Magazine