Victim: tpgagedcare.com.au Country : AU Actor: lockbit3 Source: http://lbb6ud2vyf23z4hw6fzskr5gru7eftbjfbd6yzra3hzuqqvjy63blqqd.onion//post/TpYe5QMEFM1QoDmR66febd0ce42c1 Discovered: 2024-10-06 22:42:13.790648 Published: 2024-10-03 15:50:00.000000 Description : Greetings! Today we are posting here the new company, “TPG Aged Care”. Company …
Tag: RAAS
Short Summary:
CyberVolk is a politically motivated hacktivist group that has transitioned to using ransomware since June 2024. Initially operating under different names, the group has targeted Spanish institutions in …
Short Summary:
The article analyzes CyberVolk, a politically motivated hacktivist group that transitioned to using ransomware since June 2024. Initially a hacktivist organization, CyberVolk has launched ransomware attacks as a …
Meow, a ransomware group that emerged in 2022, has gained attention for its unique operational model and rising victim count. It is often linked to Meow Leaks, which …
Summary: A recent Microsoft alert has revealed that the threat actor Vanilla Tempest is using a new ransomware strain, INC, to target the US healthcare sector, highlighting the ongoing cyber …
Short Summary:
Key Group, also known as keygroup777, is a financially motivated ransomware group that primarily targets Russian users. They utilize various ransomware builders, including Chaos and Annabelle, and communicate …
Summary: DragonForce ransomware is rapidly expanding its Ransomware-as-a-Service (RaaS) operations, posing a significant global threat to businesses through sophisticated double extortion tactics. Companies are urged to enhance their cybersecurity measures …
Summary: Microsoft has reported a multi-staged attack by the threat actor Storm-0501, which compromised hybrid cloud environments leading to data exfiltration, credential theft, and ransomware deployment across various sectors in …
In light of the escalating frequency and complexity of ransomware attacks, are security leaders confident in their organization’s defenses? According to Group-IB’s Hi-Tech Crime Trends 2023/2024 Report, ransomware will have …
Summary: The Kryptina ransomware has transitioned from a free tool to a significant player in enterprise attacks, particularly through its integration with the Mallox ransomware family. This evolution highlights the …
Kryptina has transitioned from a free tool available on public forums to a significant player in enterprise attacks, particularly associated with the Mallox ransomware family. A leak in …
Short Summary:
Medusa is a Ransomware-as-a-Service (RaaS) targeting Windows environments, active since June 2021. It gained attention in early 2023 with the launch of its Dedicated Leak Site. Medusa spreads …
Victim: yesmoke.eu Country : IT Actor: lockbit3 Source: http://lbb6ud2vyf23z4hw6fzskr5gru7eftbjfbd6yzra3hzuqqvjy63blqqd.onion//post/GyJucewdgcmNN72b66eaeead91362 Discovered: 2024-09-19 04:14:38.979835 Published: 2024-09-18 15:15:00.000000 Description : Sede legale | C.so Europa, 7 20122 Milano, Italia; Sede Operativa | Via …
Victim: efile.com Country : US Actor: lockbit3 Source: http://lbb6ud2vyf23z4hw6fzskr5gru7eftbjfbd6yzra3hzuqqvjy63blqqd.onion//post/rK29U1JmW14s78vo66eaeede60729 Discovered: 2024-09-19 04:11:37.162314 Published: 2024-09-18 15:16:00.000000 Description : eFile.com offers free or low-cost tax preparation and e-filing for federal and state …
Summary: Scattered Spider, a notorious ransomware group, has been executing sophisticated phishing attacks targeting financial and insurance companies to steal credentials and launch ransomware attacks on cloud environments. Their tactics …
The recently patched SonicWall vulnerability, CVE-2024-40766, affects the SSLVPN feature and management access of SonicWall firewalls. Active exploitation by the Akira ransomware group has been reported, prompting urgent …
Medusa is a ransomware group that emerged in 2023, known for its unique presence on both the surface and dark web. By 2024, they have intensified their cyberattacks, …
Short Summary:
Ransomware activity surged in Q2 2024, with a 36% increase in claimed attacks compared to Q1, totaling 1,310 incidents. The resurgence is attributed to the recovery of LockBit …
Short Summary:
Repellent Scorpius is a newly emerged ransomware-as-a-service (RaaS) group distributing Cicada3301 ransomware, first identified in May 2024. The group employs a double extortion scheme, encrypting data and threatening …
Threat Actor: The Brotherhood | The Brotherhood Victim: Cybercriminals | Cybercriminals Price: $750 per slot Exfiltrated Data Type: Sensitive data (passwords, cookies)
Key Points :
The Brotherhood connects the BlackForums…Summary: The Indian hacker group CyberVolk has emerged as a significant threat in the cybercrime landscape with its sophisticated ransomware, first detected in July 2024. Known for its advanced features …
Short Summary:
On August 29, 2024, the FBI, CISA, MS-ISAC, and HHS released a Cybersecurity Advisory regarding RansomHub ransomware, detailing its IOCs and TTPs. RansomHub, which operates under a Ransomware-as-a-Service …
Short Summary:
Mallox is a sophisticated ransomware family that has been actively attacking organizations globally since 2021. With over 700 samples discovered, it has evolved significantly, particularly in 2023 and …
Short Summary:
The Cicada3301 group has emerged as a ransomware-as-a-service (RaaS) platform, offering double extortion capabilities through ransomware and a data leak site. Their ransomware, written in Rust, targets both …
Summary: Cicada3301 is a newly emerged ransomware-as-a-service (RaaS) operation that has already targeted 23 victims since mid-June, utilizing sophisticated techniques and code similarities to the now-defunct BlackCat/ALPHV group. The ransomware, …
Short Summary:
The cyber landscape of 2024 has seen significant developments with a complex network of threat actors making their mark through various attacks, scandals, and tactics. This article highlights …
Victim: alconca.com.ve Country : VE Actor: lockbit3 Source: http://lbb6ud2vyf23z4hw6fzskr5gru7eftbjfbd6yzra3hzuqqvjy63blqqd.onion//post/DMSA5AdxGogB4nX266d0931622666 Discovered: 2024-08-30 08:08:25.633778 Published: 2024-08-29 15:26:00.000000 Description : Granja Alconca CA is a company that operates in the Animals & Livestock …
Victim: designintoto.com.au Country : AU Actor: lockbit3 Source: http://lbb6ud2vyf23z4hw6fzskr5gru7eftbjfbd6yzra3hzuqqvjy63blqqd.onion//post/B6sDFw7G2KtFXAzL66d1927dc68e7 Discovered: 2024-08-30 14:25:01.851073 Published: 2024-08-30 09:35:00.000000 Description : Intoto is a communications agency specialising in below-the-line services across a diverse range …
Summary: RansomHub, a new ransomware-as-a-service operation that emerged in February 2024, has compromised over 200 victims across critical U.S. infrastructure sectors, focusing on data-theft-based extortion rather than file encryption. The …
Short Summary:
Mallox, also known as TargetCompany, FARGO, and Tohnichi, is a ransomware strain active since June 2021, operating under a Ransomware-as-a-Service (RaaS) model. It primarily targets unsecured MS-SQL servers …
RansomHub ransomware, which emerged in February 2024, poses a significant threat to various sectors, including critical infrastructure. Utilizing a double-extortion model, it encrypts and exfiltrates data to demand …
Victim: bridgestoneamericas.com Country : US Actor: lockbit3 Source: http://lbb6ud2vyf23z4hw6fzskr5gru7eftbjfbd6yzra3hzuqqvjy63blqqd.onion//post/kqEGOeyblvr3mx1G66d098fd7617f Discovered: 2024-08-30 07:58:15.036479 Published: 2024-08-29 15:51:00.000000 Description : Since its founding in 1931, Bridgestone is committed to innovating improvements for the …
Victim: inces.com Country : DE Actor: lockbit3 Source: http://lbb6ud2vyf23z4hw6fzskr5gru7eftbjfbd6yzra3hzuqqvjy63blqqd.onion//post/cfaCw09sPu64f60S66d0999d5ec6e Discovered: 2024-08-30 07:51:17.601572 Published: 2024-08-29 15:54:00.000000 Description : inces.com
Ransomware Victims – ALL Other Victims by lockbit3
Ransomware Activity Overview
Ransomware…Summary: The BlackByte ransomware group has evolved its tactics, leveraging new vulnerabilities and enhancing its self-propagating capabilities while maintaining its core strategies. Recent investigations reveal a significant uptick in activity, …
Summary: A recent analysis by Barracuda Networks reveals that 44% of ransomware attacks were detected during lateral movement, highlighting the importance of monitoring for unusual behavior. The study also indicates …
Short Summary:
Trustwave investigated an unauthorized access incident leading to the deployment of Mallox ransomware in a client’s cloud-based environment. The attack exploited a misconfiguration that allowed unauthorized access, resulting …
Summary: The ransomware industry is stabilizing in productivity after a peak in late 2023, with a shift towards targeting small and medium-sized businesses and ongoing law enforcement efforts disrupting major …
Victim: aerworldwide.com Country : US Actor: lockbit3 Source: http://lbb6ud2vyf23z4hw6fzskr5gru7eftbjfbd6yzra3hzuqqvjy63blqqd.onion//post/2huKMnC9YAc5qYGG66c101561588f Discovered: 2024-08-17 20:58:44.964899 Published: 2024-08-17 20:01:00.000000 Description : AER believes in transformation. We are Transformative Tech , – What does this …
Summary: The report highlights the evolving landscape of malware loaders in 2024, emphasizing their significant role in cyberattacks and the increasing sophistication of their techniques. It provides insights into the …
Victim: police.praca.gov.pl Country : PL Actor: ransomhub Source: http://ransomxifxwc5eteopdobynonjctkxxvap77yqifu2emfbecgbqdw6qd.onion/343172dd-64f9-44cb-908a-74eebf49bc88/ Discovered: 2024-08-14 10:32:07.352235 Published: 2024-08-14 09:53:42.000000 Description :
Ransomware Victims – ALL Other Victims by ransomhub
This bellow paragraph was generated …
Summary: The Top Threats to Cloud Computing 2024 report by the Cloud Security Alliance highlights the persistent critical vulnerabilities in cloud security, including misconfigurations and IAM weaknesses, while noting a …
Short Summary:
In 2024, malware loaders have become a prevalent tool in cyberattacks, with loaders like SocGholish, GootLoader, and Raspberry Robin leading the charge. These loaders utilize sophisticated evasion techniques …
Summary: The report by Darktrace highlights the escalating sophistication of cyber threats, particularly through the use of Malware-as-a-Service (MaaS) and Ransomware-as-a-Service (RaaS), which lower the entry barrier for attackers and …
Summary: A recent report by Rapid7 reveals a surge in ransomware groups, with 21 new or rebranded entities emerging since January 2024, alongside established gangs like LockBit. The report highlights …
The rise of DeathGrip ransomware, a Ransomware-as-a-Service (RaaS) model, highlights the decreasing barrier to entry for cybercriminals. With tools like LockBit 3.0 and Yashma/Chaos readily available, even those …
“`html Short Summary:
Hunters International, a ransomware group that emerged in October 2023, has quickly become the 10th most active ransomware group in 2024. They operate as a Ransomware-as-a-Service (RaaS) …