en
Get a Demo
Navigation Arrow Left Back
Navigation Close
Get a Demo

Crimeware

Cloudy With A Chance Of Credentials AWS Targeting Cred Stealer Expands To Azure GCP 9
Crimeware

Cloudy With a Chance of Credentials | AWS-Targeting Cred Stealer Expands to Azure, GCP
Alex Delamotte /

Cloud credentials stealing campaign expands to target Azure and Google Cloud via unpatched web app vulnerabilities.

Read More
Hypervisor Ransomware Multiple Threat Actor Groups Hop On Leaked Babuk Code To Build ESXi Lockers
Crimeware

Hypervisor Ransomware | Multiple Threat Actor Groups Hop on Leaked Babuk Code to Build ESXi Lockers
Alex Delamotte /

Availability of leaked Babuk source code is fuelling a proliferation of file lockers targeting VMware ESXi.

Read More
IceFire Ransomware Returns Now Targeting Linux Enterprise Networks 8
Crimeware

IceFire Ransomware Returns | Now Targeting Linux Enterprise Networks
Alex Delamotte /

New Linux version of the IceFire ransomware have been observed in recent network intrusions of media and entertainment enterprises.

Read More
Cl0p Ransomware Targets Linux Systems With Flawed Encryption Decryptor Available 9
Crimeware

Cl0p Ransomware Targets Linux Systems with Flawed Encryption | Decryptor Available
Antonis Terefos /

An in-the-wild ELF variant of Cl0p ransomware shows the gang is looking beyond traditional Windows targets.

Read More
MalVirt .NET Virtualization Thrives In New Malvertising Attacks 3
Crimeware

MalVirt | .NET Virtualization Thrives in Malvertising Attacks
Aleksandar Milenkoski /

.NET malware loaders distributed through malvertising are using obfuscated virtualization for anti-analysis and evasion in an ongoing campaign.

Read More
Custom Branded Ransomware The Vice Society Group And The Threat Of Outsourced Development 3
Crimeware

Custom-Branded Ransomware: The Vice Society Group and the Threat of Outsourced Development
Antonio Cocomazzi /

New PolyVice ransomware is likely in use by multiple threat actors building re-branded payloads with the same custom encryption scheme.

Read More
SocGholish Diversifies And Expands Its Malware Staging Infrastructure To Counter Defenders 2
Crimeware

SocGholish Diversifies and Expands Its Malware Staging Infrastructure to Counter Defenders
Aleksandar Milenkoski /

SocGholish operators continue to infect websites at a massive scale, and the threat actor is ramping up its infrastructure to match.

Read More
Black Basta Feature
Crimeware

Black Basta Ransomware | Attacks Deploy Custom EDR Evasion Tools Tied to FIN7 Threat Actor
Antonio Cocomazzi /

Black Basta operational TTPs are described here in full detail, revealing previously unknown tools and techniques and a link to FIN7.

Read More
Intermittent Encryption For Speed And Evasion On The Rise A Trending Feature On The Ransomware Scene By Aleksandar Milenkoski Jim Walter 5
Crimeware

Crimeware Trends | Ransomware Developers Turn to Intermittent Encryption to Evade Detection
Aleksandar Milenkoski /

Partially encrypting victims' files improves ransomware speed and aids evasion. First seen in LockFile, the technique is now being widely adopted.

Read More
PyPI Phishing Campaign JuiceLedger Threat Actor Pivots From Fake Apps To Supply Chain Attacks 1
Crimeware

PyPI Phishing Campaign | JuiceLedger Threat Actor Pivots From Fake Apps to Supply Chain Attacks
Amitai Ben Shushan Ehrlich /

A new threat actor is spreading infostealer malware through targeted attacks on developers and fraudulent cryptotrading applications.

Read More
1 2 3 7