HellCat Ransomware Hits 4 Firms using Infostealer-Stolen Jira Credentials hackread.com/hellcat-r…

Cybersecurity researchers at Hudson Rock have identified a new wave of cyber attacks by the HellCat ransomware group, this time targeting four companies across the United States and Europe. The common thread? Stolen Jira credentials, extracted by infostealer malware long before the actual breaches took place.

On April 5, 2025, HellCat posted proof of the breaches to their leak site, complete with countdown timers and their signature “Jiraware < < 3!!” tagline. According to their posts, they’ve stolen internal files, emails, and financial records, and they’re threatening to leak or sell the data if the companies don’t meet their demands.