Kaspersky has issued a warning about the Fog Ransomware group, which has escalated its tactics by publicly revealing victims’ stolen data and IP addresses on the Dark Web. This shift from traditional ransomware extortion to a more aggressive and fear-driven method is designed to increase pressure on victims to comply with ransom demands. The group, which primarily targets industries such as education, recreation, and finance, exploits compromised VPN credentials to infiltrate networks and encrypt data. The new tactic exposes not only the stolen data but also IP addresses, potentially increasing follow-up attacks and regulatory risks for victims.