Ransomware Attacks

ASTROLOCKER Ransomware: Technical Analysis and Defense Strategies

Malware Analysis

ASTROLOCKER Ransomware: Technical Analysis and Defense Strategies

The Ransom.Win64.ASTROLOCKER.THCBDBA ransomware represents a moderate-risk threat with high damage potential, primarily targeting Windows environments. First documented...

ASTROLOCKER Ransomware: Technical Analysis of a Mount Locker Affiliate Strain

Malware Analysis

ASTROLOCKER Ransomware: Technical Analysis of a Mount Locker Affiliate Strain

Ransom.Win32.ASTROLOCKER.A represents a lesser-known but technically sophisticated ransomware strain with potential ties to the Mount Locker operation....

Ransom.Win32.SODINOKIBI.YABGC: Technical Analysis of a REvil Ransomware Variant Targeting Windows Systems

Malware Analysis

Ransom.Win32.SODINOKIBI.YABGC: Technical Analysis of a REvil Ransomware Variant Targeting Windows Systems

The ransomware variant Ransom.Win32.SODINOKIBI.YABGC (a member of the REvil/Sodinokibi family) poses a significant threat to Windows environments...

Ransom.MSIL.CHAOS.A: Analyzing the Low-Prevalence but High-Impact Ransomware Threat

News

Ransom.MSIL.CHAOS.A: Analyzing the Low-Prevalence but High-Impact Ransomware Threat

Security teams should be aware of Ransom.MSIL.CHAOS.A, a Windows-specific ransomware strain demonstrating high damage potential despite its...

Ransom.Win32.LOCKBIT.YEBGW: Technical Analysis and Mitigation Strategies

Blue-Team

Ransom.Win32.LOCKBIT.YEBGW: Technical Analysis and Mitigation Strategies

Ransom.Win32.LOCKBIT.YEBGW is a ransomware variant linked to the LockBit family, a group notorious for high-impact cyberattacks worldwide....

Technical Analysis of Ransom.Win32.LOCKBIT.YXCGD: A Low-Prevalence LockBit Variant

Malware Analysis

Technical Analysis of Ransom.Win32.LOCKBIT.YXCGD: A Low-Prevalence LockBit Variant

Summary: The ransomware variant Ransom.Win32.LOCKBIT.YXCGD (detected as Trojan-Ransom.BlackMatter by IKARUS and Ransom:Win32/Lockbit.STB by Microsoft) represents a low-risk...

Ransom.Win32.RTMCOMMAND.THKBFBD: Analyzing a Low-Risk but Potent Windows Ransomware Strain

Malware Analysis

Ransom.Win32.RTMCOMMAND.THKBFBD: Analyzing a Low-Risk but Potent Windows Ransomware Strain

Discovered in April 2023, Ransom.Win32.RTMCOMMAND.THKBFBD (also tracked as Ransom:Win32/RTMLocker.AA!MTB) is a Windows-specific ransomware strain with limited distribution...

Ransom.Win64.CONTI.AA: Analyzing the Persistent Conti Ransomware Threat

Malware Analysis

Ransom.Win64.CONTI.AA: Analyzing the Persistent Conti Ransomware Threat

Ransom.Win64.CONTI.AA, a variant of the notorious Conti ransomware family, remains a significant threat to Windows systems despite...

Ransom.MSIL.EGOGEN.THEBBBC: Analyzing a Low-Risk but Persistent Ransomware Threat

Malware Analysis

Ransom.MSIL.EGOGEN.THEBBBC: Analyzing a Low-Risk but Persistent Ransomware Threat

Ransom.MSIL.EGOGEN.THEBBBC is a ransomware strain targeting Windows systems, classified as low-risk in terms of distribution but with...

Ransom.Win32.NOKO.THDABBC: Low-Risk Ransomware with Medium Damage Potential

Malware Analysis

Ransom.Win32.NOKO.THDABBC: Low-Risk Ransomware with Medium Damage Potential

Ransom.Win32.NOKO.THDABBC is a ransomware strain targeting Windows systems, classified as low risk due to its limited distribution...

Ransom.Win32.SPOOSH.THGAGBC: A Low-Risk Ransomware with High Data Exfiltration Risks

Malware Analysis

Ransom.Win32.SPOOSH.THGAGBC: A Low-Risk Ransomware with High Data Exfiltration Risks

Ransom.Win32.SPOOSH.THGAGBC is a Windows-targeting ransomware strain first documented by Trend Micro in July 2023. While classified as...

MITRE ATT&CK 2024 Results: Ransomware & macOS Threats Dominate Enterprise Security

Threat Intelligence

MITRE ATT&CK 2024 Results: Ransomware & macOS Threats Dominate Enterprise Security

The 2024 MITRE ATT&CK® Evaluations for Enterprise reveal critical insights into ransomware and macOS threats, with vendors...

ESET Threat Report H2 2024: Rising Infostealers, Deepfake Scams, and Cryptocurrency Threats

Threat Intelligence

ESET Threat Report H2 2024: Rising Infostealers, Deepfake Scams, and Cryptocurrency Threats

The second half of 2024 has seen significant shifts in the cyberthreat landscape, according to ESET’s latest...

Cybersecurity Never Takes a Holiday: Protecting Your Business 24/7

News

Cybersecurity Never Takes a Holiday: Protecting Your Business 24/7

As organizations prepare for seasonal breaks, cybercriminals are actively planning attacks. The holiday period often sees a...

Fortinet Patches Critical Vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb: NCSC-2025-0082 Exploited in Ransomware Attacks

CVE News
Exploitation

Fortinet Patches Critical Vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb: NCSC-2025-0082 Exploited in Ransomware Attacks

Fortinet has recently addressed a critical vulnerability affecting multiple products, including FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb....

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

Exploitation
Threat Intelligence

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

The Nationaal Cyber Security Centrum (NCSC) of the Netherlands has issued a warning regarding a series of cyberattacks...

Preventing Ransomware Attacks: Basic Security Measures That Make a Difference

Blue-Team
Red-Team

Preventing Ransomware Attacks: Basic Security Measures That Make a Difference

Ransomware attacks continue to be a significant threat to organizations worldwide, but many of these incidents can...

Critical Vulnerabilities in FortiOS and FortiProxy Lead to Ransomware Attacks: NCSC Warns of Exploitation

CVE News
Exploitation

Critical Vulnerabilities in FortiOS and FortiProxy Lead to Ransomware Attacks: NCSC Warns of Exploitation

The National Cyber Security Centre (NCSC) has reported a significant surge in ransomware attacks targeting critical vulnerabilities...

Dealing with the SolarWinds Orion Compromise: Immediate Actions for Organizations

APT-News
Data Breach

Dealing with the SolarWinds Orion Compromise: Immediate Actions for Organizations

The SolarWinds Orion compromise, disclosed in December 2020, remains one of the most significant cybersecurity incidents in...

NCSC Warns of Cryptojacking: How Malicious Software is Exploiting Devices for Illicit Cryptocurrency Mining

Blue-Team
Exploitation

NCSC Warns of Cryptojacking: How Malicious Software is Exploiting Devices for Illicit Cryptocurrency Mining

The National Cyber Security Centre (NCSC) has issued a warning about the increasing use of malicious software...

Posts pagination

Previous 1 2

Ransomware Attacks

ASTROLOCKER Ransomware: Technical Analysis and Defense Strategies

ASTROLOCKER Ransomware: Technical Analysis of a Mount Locker Affiliate Strain

Ransom.Win32.SODINOKIBI.YABGC: Technical Analysis of a REvil Ransomware Variant Targeting Windows Systems

Ransom.MSIL.CHAOS.A: Analyzing the Low-Prevalence but High-Impact Ransomware Threat

Ransom.Win32.LOCKBIT.YEBGW: Technical Analysis and Mitigation Strategies

Technical Analysis of Ransom.Win32.LOCKBIT.YXCGD: A Low-Prevalence LockBit Variant

Ransom.Win32.RTMCOMMAND.THKBFBD: Analyzing a Low-Risk but Potent Windows Ransomware Strain

Ransom.Win64.CONTI.AA: Analyzing the Persistent Conti Ransomware Threat

Ransom.MSIL.EGOGEN.THEBBBC: Analyzing a Low-Risk but Persistent Ransomware Threat

Ransom.Win32.NOKO.THDABBC: Low-Risk Ransomware with Medium Damage Potential

Ransom.Win32.SPOOSH.THGAGBC: A Low-Risk Ransomware with High Data Exfiltration Risks

MITRE ATT&CK 2024 Results: Ransomware & macOS Threats Dominate Enterprise Security

ESET Threat Report H2 2024: Rising Infostealers, Deepfake Scams, and Cryptocurrency Threats

Cybersecurity Never Takes a Holiday: Protecting Your Business 24/7

Fortinet Patches Critical Vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb: NCSC-2025-0082 Exploited in Ransomware Attacks

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

Preventing Ransomware Attacks: Basic Security Measures That Make a Difference

Critical Vulnerabilities in FortiOS and FortiProxy Lead to Ransomware Attacks: NCSC Warns of Exploitation

You may have missed

Trump Administration Considers TikTok Deal Allowing Chinese Algorithm Ownership

How Intezer’s AI SOC Balances Automation with Human Expertise

How Security Platformization Improves Threat Response and Operational Efficiency

World Backup Day: Essential Strategies for Enterprise Data Protection