August 17, 2024 at 10:37AM Mad Liberator, a new data extortion group, targets AnyDesk users by using fake Microsoft Windows update screens to distract while exfiltrating data. The group claims to use AES/RSA algorithms to lock files but did not encrypt data in observed attacks. They drop ransom notes on shared network directories as a … Read more
August 13, 2024 at 04:54AM Law enforcement agencies in the US, Germany, and the UK announced the disruption of Radar/Dispossessor ransomware group’s infrastructure, targeting various sectors. The group made 43 victims globally and was led by an individual known as “Brain”. Multiple servers and domains were taken down, and 12 individuals associated with the group … Read more
January 10, 2024 at 06:34AM Cisco Talos released a decryptor for the Tortilla variant of Babuk ransomware, enabling victims to regain file access. The cybersecurity firm shared intelligence that led to the arrest of the threat actor. Avast also obtained the encryption key, updating its decryptor for all Tortilla victims. Meanwhile, Security Research Labs unveiled … Read more
November 17, 2023 at 06:29PM Ransomware gangs are targeting vulnerable Citrix Netscaler devices using a publicly available exploit to breach large organizations, steal data, and encrypt files. The threat actors exploit the Citrix Bleed vulnerability (CVE-2023-4966). Many recent victims, including Toyota Financial Services, ICBC, DP World, Allen & Overy, and Boeing, were found to have … Read more
November 9, 2023 at 06:16PM Malicious Python packages masquerading as code obfuscation tools are targeting developers through the PyPI code repository. Known as “BlazeStealer,” the malware can steal data, launch keyloggers, encrypt files, and execute commands. Hackers target developers engaged in code obfuscation due to the valuable and sensitive information they work with. BlazeStealer is … Read more
October 30, 2023 at 12:59PM A new malware called BiBi-Linux is targeting Linux systems of Israeli companies to destroy data. It does not drop a ransom note or establish communication with attackers. The malware overwrites files with useless data, damaging both the data and the operating system. It can wipe an entire device if run … Read more