Ransomware Attacks

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

APT-News

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

The National Defense Corporation (NDC) has confirmed a ransomware attack targeting its subsidiary AMTEC, a major manufacturer...

FBI and CISA Alert: Medusa Ransomware Targets Email and VPN Services

Threat Intelligence

FBI and CISA Alert: Medusa Ransomware Targets Email and VPN Services

The FBI and CISA have issued a joint advisory warning Gmail, Outlook, and VPN users about an...

Russian Drone Strikes on Kharkiv: Escalation in Ukraine Conflict

APT-News

Russian Drone Strikes on Kharkiv: Escalation in Ukraine Conflict

Russian drone attacks on Kharkiv, Ukraine’s second-largest city, killed at least two civilians and injured dozens, including...

VanHelsing Ransomware: Technical Analysis and Mitigation Strategies

Malware Analysis

VanHelsing Ransomware: Technical Analysis and Mitigation Strategies

The emergence of VanHelsing ransomware in March 2025 has raised significant concerns due to its ransomware-as-a-service (RaaS)...

BlackLock Ransomware Infrastructure Compromised Through Leak Site Vulnerability

APT-News

BlackLock Ransomware Infrastructure Compromised Through Leak Site Vulnerability

Security researchers have successfully infiltrated the infrastructure of the BlackLock ransomware group by exploiting a vulnerability in...

Medusa Ransomware Targets Critical Infrastructure: Technical Analysis and Mitigation

Threat Intelligence

Medusa Ransomware Targets Critical Infrastructure: Technical Analysis and Mitigation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing...

NHS Vendor Advanced Fined £3M for Security Failures Leading to 2022 Ransomware Attack

Cyber Laws & Regulations

NHS Vendor Advanced Fined £3M for Security Failures Leading to 2022 Ransomware Attack

The UK Information Commissioner’s Office (ICO) has confirmed that NHS software supplier Advanced will pay £3.07 million...

Sam’s Club Faces Potential Clop Ransomware Attack: Investigation Underway

Threat Intelligence

Sam’s Club Faces Potential Clop Ransomware Attack: Investigation Underway

Sam’s Club, the Walmart-owned retail warehouse chain, is currently investigating claims of a data breach linked to...

Analysis of the 13M Indian Bank User Data Breach and Related Cyber Threats

Data Breach

Analysis of the 13M Indian Bank User Data Breach and Related Cyber Threats

A recent alleged data breach has reportedly exposed the personal information of over 13 million Indian bank...

Blacklock Ransomware Infrastructure Compromised: Inside the Breach That Exposed Future Attacks

Threat Intelligence

Blacklock Ransomware Infrastructure Compromised: Inside the Breach That Exposed Future Attacks

In a significant blow to the Blacklock ransomware group, cybersecurity firm Resecurity exploited a vulnerability in the...

VanHelsing RaaS Emerges: Double Extortion, Multi-OS Targeting, and $5K Entry Fee

APT-News

VanHelsing RaaS Emerges: Double Extortion, Multi-OS Targeting, and $5K Entry Fee

A new ransomware-as-a-service (RaaS) operation dubbed “VanHelsing” has surfaced, targeting multiple operating systems and employing double extortion...

INTERPOL’s Global Cybercrime Crackdown: 306 Arrested, 1,842 Devices Seized

APT-News

INTERPOL’s Global Cybercrime Crackdown: 306 Arrested, 1,842 Devices Seized

In a coordinated international operation, INTERPOL has arrested 306 suspects and seized 1,842 electronic devices in a...

Hackers Exploit .NET MAUI to Deliver Fake Banking and Social Apps in India and China

APT-News

Hackers Exploit .NET MAUI to Deliver Fake Banking and Social Apps in India and China

Security researchers have identified a new campaign where threat actors are leveraging Microsoft’s .NET Multi-platform App UI...

February 2025 Financial Sector Cyber Threats: Korean & Global Security Analysis

Threat Intelligence

February 2025 Financial Sector Cyber Threats: Korean & Global Security Analysis

A recent ASEC report reveals intensifying cyber threats against financial institutions in South Korea and worldwide, with...

Ransomware and Dark Web Threats Escalate in March 2025: New Extortion Tactics and Hacktivist Attacks

Threat Intelligence

Ransomware and Dark Web Threats Escalate in March 2025: New Extortion Tactics and Hacktivist Attacks

The second week of March 2025 witnessed a surge in cybercriminal operations, marked by the emergence of...

Ransom.MSIL.COBRALOCKER.AA: Technical Analysis of an Evolving Ransomware Threat

Malware Analysis

Ransom.MSIL.COBRALOCKER.AA: Technical Analysis of an Evolving Ransomware Threat

Summary: Ransom.MSIL.COBRALOCKER.AA represents a Windows-targeting ransomware strain first identified in January 2021, demonstrating low distribution but high...

Ransom.MSIL.THANOS.THABGBA: A Low-Prevalence but High-Impact Ransomware Threat

Malware Analysis

Ransom.MSIL.THANOS.THABGBA: A Low-Prevalence but High-Impact Ransomware Threat

Ransom.MSIL.THANOS.THABGBA is a ransomware strain targeting Windows systems, classified as a low-risk threat due to its limited...

DEARCRY Ransomware: Technical Analysis of a High-Risk Threat Targeting Microsoft Exchange Servers

Malware Analysis

DEARCRY Ransomware: Technical Analysis of a High-Risk Threat Targeting Microsoft Exchange Servers

Summary: Ransom.Win32.DEARCRY.THCABBA represents a significant cybersecurity threat despite its relatively low prevalence. First identified in March 2021,...

ASTROLOCKER Ransomware: Technical Analysis and Defense Strategies

Malware Analysis

ASTROLOCKER Ransomware: Technical Analysis and Defense Strategies

The Ransom.Win64.ASTROLOCKER.THCBDBA ransomware represents a moderate-risk threat with high damage potential, primarily targeting Windows environments. First documented...

ASTROLOCKER Ransomware: Technical Analysis of a Mount Locker Affiliate Strain

Malware Analysis

ASTROLOCKER Ransomware: Technical Analysis of a Mount Locker Affiliate Strain

Ransom.Win32.ASTROLOCKER.A represents a lesser-known but technically sophisticated ransomware strain with potential ties to the Mount Locker operation....

Posts pagination

1 2 Next

Ransomware Attacks

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

FBI and CISA Alert: Medusa Ransomware Targets Email and VPN Services

Russian Drone Strikes on Kharkiv: Escalation in Ukraine Conflict

VanHelsing Ransomware: Technical Analysis and Mitigation Strategies

BlackLock Ransomware Infrastructure Compromised Through Leak Site Vulnerability

Medusa Ransomware Targets Critical Infrastructure: Technical Analysis and Mitigation

NHS Vendor Advanced Fined £3M for Security Failures Leading to 2022 Ransomware Attack

Sam’s Club Faces Potential Clop Ransomware Attack: Investigation Underway

Analysis of the 13M Indian Bank User Data Breach and Related Cyber Threats

Blacklock Ransomware Infrastructure Compromised: Inside the Breach That Exposed Future Attacks

VanHelsing RaaS Emerges: Double Extortion, Multi-OS Targeting, and $5K Entry Fee

INTERPOL’s Global Cybercrime Crackdown: 306 Arrested, 1,842 Devices Seized

Hackers Exploit .NET MAUI to Deliver Fake Banking and Social Apps in India and China

February 2025 Financial Sector Cyber Threats: Korean & Global Security Analysis

Ransomware and Dark Web Threats Escalate in March 2025: New Extortion Tactics and Hacktivist Attacks

Ransom.MSIL.COBRALOCKER.AA: Technical Analysis of an Evolving Ransomware Threat

Ransom.MSIL.THANOS.THABGBA: A Low-Prevalence but High-Impact Ransomware Threat

DEARCRY Ransomware: Technical Analysis of a High-Risk Threat Targeting Microsoft Exchange Servers

ASTROLOCKER Ransomware: Technical Analysis and Defense Strategies

ASTROLOCKER Ransomware: Technical Analysis of a Mount Locker Affiliate Strain

You may have missed

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

WpTravelly Plugin Vulnerability Exposes WordPress Sites to Object Injection Attacks

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)