#XynikRansomware

VX-Underground malware collective framed by Phobos ransomware

by

November 20, 2023 at 03:46PM A new variant of the Phobos ransomware has emerged, attempting to frame the VX-Underground malware-sharing collective. This variant appends the email address [email protected] and the extension ‘VXUG’ to encrypted files, while ransom notes make reference to the group. Threat actors sometimes taunt security researchers and organizations in their malware and … Read more

LockBit ransomware exploits Citrix Bleed in attacks, 10K servers exposed

by

November 14, 2023 at 03:05PM LockBit ransomware attacks are exploiting the Citrix Bleed vulnerability (CVE-2023-4966) to breach large organizations’ systems, steal data, and encrypt files. Despite Citrix releasing fixes for the vulnerability over a month ago, thousands of vulnerable appliances are still running, many in the U.S. LockBit affiliates are likely responsible for the attacks, … Read more