The BlackCat (ALPHV) ransomware group has exhibited an evolved modus operandi, leveraging stolen Microsoft accounts and a recently discovered encryptor known as Sphynx to target Azure cloud storage. During a comprehensive investigation, cybersecurity experts from...
Ransomware
UNC3944 Threat Actor Shifts to Ransomware Attacks for Financial Gain
Cybersecurity experts have identified a shift in tactics by the financially motivated threat actor known as UNC3944. This group has expanded its monetization strategies, now incorporating ransomware deployment as part of its arsenal. Mandiant, a leading threat...
Exploring Man-in-the-Middle Attacks and How to Defend Against Them
In an era defined by digital connectivity, where online communication reigns supreme, the realm of cybersecurity threats has evolved into a landscape of unprecedented sophistication. Amidst this evolving threat landscape, the Man-in-the-Middle (MitM) attack emerges as...
Cybercriminals Exploit EV Certificates in Phishing Campaigns to Spread Ransomware
In recent developments, threat actors responsible for the RedLine and Vidar information stealers have exhibited a notable shift towards ransomware operations. This transition has been primarily facilitated through phishing campaigns, deploying initial payloads that...
This Week in Cybersecurity: Sep 11 – Sep 15
ALPHV Brings MGM Resorts to a Halt in Ten Minutes In a recent cyber incident that has shaken the operations of MGM Resorts, the ALPHV/BlackCat ransomware group has emerged as the main culprit. This unanticipated breach originated from an unusual source, LinkedIn,...
ALPHV Brings MGM Resorts to a Halt in Ten Minutes
In a recent cyber incident that has shaken the operations of MGM Resorts, the ALPHV/BlackCat ransomware group has emerged as the main culprit. This unanticipated breach originated from an unusual source, LinkedIn, raising questions about the vulnerabilities associated...
3AM Ransomware Threat Actor Deploys Bitwise Spider in the Wild
A novel strain of ransomware known as "3AM" has surfaced, marking its presence in the cybersecurity landscape. This malware variant made its debut after being identified in a single security incident, during which an unidentified affiliate turned to 3AM following an...
This Week in Cybersecurity: Sep 04 – Sep 08
Critical Vulnerabilities Discovered in SEL’s Power Management Products In a recent disclosure, Schweitzer Engineering Laboratories (SEL) finds itself in the spotlight, as Nozomi Networks uncovers nine security vulnerabilities within their electric power management...
Unseen Threats: Demystifying Fileless Malware Attacks
In today's digital landscape, cybersecurity is a critical concern for organizations of all sizes. Malicious actors are constantly evolving their tactics to bypass traditional security measures. One such technique that has gained significant traction is deploying...
FreeWorld Ransomware Deployed via Targeted Microsoft SQL Server Attacks
A new campaign dubbed DB#JAMMER has come to light where threat actors are targeting vulnerable Microsoft SQL (MS SQL) servers, capitalizing on lax security measures to execute a multi-faceted attack. This campaign is notable not only for its malicious intent but also...
Stay Up to Date With The Latest News & Updates
Join Our Newsletter
Follow Us