Virus BulletinTeam Cymru profiles Yurei, a double extortion ransomware campaign active since Sept 2025, with links to Prince Ransomware and possible ties to SatanLockv2. Despite its low public victim count, the exposed operator toolkit shows initial access, discovery, credential theft, defence evasion, and lateral movement. https://www.team-cymru.com/post/yurei-double-extortion-ransomware-campaign-toolkit
