Threat Intelligence

Threat Intelligence Page 2

Cyber Spetsnaz Threat Group Cyberespionage Cyberattacks NATO Pro-Russia Hackers

The Cyber Spetsnaz group deployed cyberespionage attacks versus NATO

A newly discovered pro-Russian cybercriminal group called Cyber Spetsnaz has been exploiting the current geopolitical conflict between Russia and Ukraine to organise cyber-espionage campaigns. The recently uncovered group is an elite cyber offensive armada that exclusively targets the infrastructure of the North Atlantic Treaty Organisation (NATO). This month, the cyberespionage group developed a new division...
Continue Reading
Qbot Black Basta Hackers TTPs

Qbot and Black Basta joined forces to establish new TTPs

The Qbot hacking group and the Black Basta ransomware have joined forces to gain initial access to numerous targets such as corporate environments. Qbot is notorious for stealing banking credentials and Windows domain and launching additional payloads. Researchers have reported the ongoing partnership between the two groups after the traces of them were found present...
Continue Reading
Russia Law Firm RKP Law Victim Anonymous Gang Hacktivist

Russian law firm RKP Law is the newest victim of the Anonymous gang

The most recent activity of the notorious hacktivist gang, Anonymous, involves their strike against Russia, leaking about 1TB of data from a Russian law firm called Rustam Kurmaev and Partners or RKP Law. The well-known law firm, RKP Law, has worked with the Russian government and other big-time Russian corporations from different sectors, such as...
Continue Reading
Polonium Hacker Gang Microsoft Eploit OneDrive Lebanese Hackers

Polonium gang gets banned by Microsoft from exploiting OneDrive

A hacking group from Lebanon, tracked Polonium, has been blocked by Microsoft from using the OneDrive cloud storage platform after the tech giant found that the threat group had been using it for stealing data and their C2 servers as they attack companies from Israel. Over 20 malicious OneDrive apps used by the threat group...
Continue Reading
Anonymous Hacktivists Belarus Russians Ukraine Hacking

The Anonymous hacktivists hit Belarus after siding with the Russians

An Anonymous affiliated hacking group claimed that they had completed an attack against the Belarusian government websites. The group commenced the attack after the latter announced their support for Russia’s invasion of Ukraine. The hacktivist group announced on Twitter that various websites linked to the Belarus state are shut down because of them. They shared...
Continue Reading
Cybercriminals Probability Theory Obfuscate XLoader Botnet Malware MacOS Windows

Cybercriminals apply probability theory to obfuscate the XLoader botnet

A new version of the XLoader botnet has been found using probability theory in obfuscating its command-and-control (C2) servers to become more resistant to being disrupted by security analysts. The method used by the botnet’s operators allows them to remain on the same infrastructure without losing nodes while also evading detection. Being initially based on...
Continue Reading
Pro-Russia Threat Groups Italy DDoS Cyberattacks Slow HTTP Hacktivist

Pro-Russia threat groups aimed at Italy to launch DDoS attacks

National entities have been alerted about the possibility of high-risk distributed denial-of-service (DDoS) attacks, based on a recent advisory from the Computer Security Incident Response Team (CSIRT) in Italy. DDoS attacks usually cause severe damage, service outage, and operational disruptions to businesses and organisations. The Italian agency continually detected signs and threats of cyberattacks against...
Continue Reading
REvil Ransomware DDoS Extortion Cyberattack

REvil ransomware linked to a recent DDoS extortion attack

A coordinated DDoS or distributed denial-of-service attack had been recently detected, which experts attribute to the notorious ransomware gang dubbed REvil. Based on an intelligence team’s report, the recently detected DDoS attack had targeted Akamai Technologies’ customers, involving an HTTP GET request that demanded the victims a BTC payment for them to stop launching attacks....
Continue Reading
CyberSecurity GoodWill RobinHood-like Ransomware Group

Experts introduced GoodWill, a RobinHood-like ransomware group

A new ransomware group called GoodWill has recently been discovered, which encrypts company data but demands charity work for the decryption key. Based on reports, the vigilante extortion group requires that their target should donate clothing to the homeless, provide orphans with food such as pizzas, and offer monetary assistance to those who are sick...
Continue Reading
Versus Market Operation Leaked Security Flaw Dark Web Black Market

Versus Market suspends operation due to a leaked security flaw

Recent reports revealed that a well-known dark web marketplace, Versus Market, had shut down its operations after a hacker and its operators found a critical flaw. The discovered critical flaw could have exposed the marketplace’s server IP addresses and allowed unauthorised access to their internal database. Cybercriminals and darknet vendors are keen on protecting their...
Continue Reading
1 2 3 4 14