ransomware

Embargo Ransomware Actors Abuses Safe Mode To Disable Security SolutionsEmbargo Ransomware Actors Abuses Safe Mode To Disable Security Solutions

Embargo Ransomware Actors Abuses Safe Mode To Disable Security Solutions

In July 2024, the ransomware group Embargo targeted US companies using the malicious loader MDeployer and EDR killer MS4Killer. MDeployer…

6 months ago
Dark Angels Ransomware Attacking Windows And Linux/ESXi SystemsDark Angels Ransomware Attacking Windows And Linux/ESXi Systems

Dark Angels Ransomware Attacking Windows And Linux/ESXi Systems

The sophisticated ransomware group Dark Angels, active since 2022, targets large companies for substantial ransom payments by employing third-party ransomware…

7 months ago
Prince Ransomware Hits UK and US via Royal Mail Phishing ScamPrince Ransomware Hits UK and US via Royal Mail Phishing Scam

Prince Ransomware Hits UK and US via Royal Mail Phishing Scam

A new ransomware campaign targeting individuals and organizations in the UK and the US has been identified. The attack, known…

7 months ago
New Mallox Ransomware Linux Variant Attacking Enterprise Linux ServersNew Mallox Ransomware Linux Variant Attacking Enterprise Linux Servers

New Mallox Ransomware Linux Variant Attacking Enterprise Linux Servers

Kryptina RaaS, a free and open-source RaaS platform for Linux, initially struggled to attract attention. Still, after a Mallox affiliate's…

7 months ago
TWELVE Threat Attacks Windows To Encrypt Then Deleting Victims’ DataTWELVE Threat Attacks Windows To Encrypt Then Deleting Victims’ Data

TWELVE Threat Attacks Windows To Encrypt Then Deleting Victims’ Data

The threat actor, formed in 2023, specializes in ransomware attacks targeting Russian government organizations. It encrypts and deletes victim data,…

7 months ago
Kansas County Ransomware Attack Exposed Nearly 30,000 Residents’ Sensitive DataKansas County Ransomware Attack Exposed Nearly 30,000 Residents’ Sensitive Data

Kansas County Ransomware Attack Exposed Nearly 30,000 Residents’ Sensitive Data

Franklin County, Kansas, has fallen victim to a ransomware attack that compromised the sensitive data of nearly 30,000 residents. The…

7 months ago
Ransomware Groups Abusing Azure Storage Explorer For Stealing DataRansomware Groups Abusing Azure Storage Explorer For Stealing Data

Ransomware Groups Abusing Azure Storage Explorer For Stealing Data

Ransomware attackers are increasingly exfiltrating data using tools like MEGAsync and Rclone. Shellbags analysis by modePUSH reveals their navigation of…

8 months ago
Key Russian Hacker Group Attacking Users With .NET Built RansomwareKey Russian Hacker Group Attacking Users With .NET Built Ransomware

Key Russian Hacker Group Attacking Users With .NET Built Ransomware

The Russian ransomware group Key Group, active since early 2023, is targeting organizations globally, as their modus operandi involves encrypting…

8 months ago
CosmicBeetle Exploiting Old Vulnerabilities To Attacks SMBs All Over The WorldCosmicBeetle Exploiting Old Vulnerabilities To Attacks SMBs All Over The World

CosmicBeetle Exploiting Old Vulnerabilities To Attacks SMBs All Over The World

CosmicBeetle, a threat actor specializing in ransomware, has recently replaced its old ransomware, Scarab, with ScRansom, a custom-built ransomware that…

8 months ago
New Developer-As-A-Service In Hacking Forums Empowering Phishing And CyberattacksNew Developer-As-A-Service In Hacking Forums Empowering Phishing And Cyberattacks

New Developer-As-A-Service In Hacking Forums Empowering Phishing And Cyberattacks

SCATTERED SPIDER, a ransomware group, leverages cloud infrastructure and social engineering to target insurance and financial institutions by using stolen…

8 months ago