BLACK BASTA : RANSOMWARE

CategoryDetailsThreat ActorsBlack Basta (Ransomware-as-a-Service Group)Campaign OverviewOperates via phishing, vulnerability exploitation, social engineering (Microsoft Teams impersonation).…

Russian National in US custody in Phobos ransomware investigation

Category Details Threat Actors Phobos ransomware operators, including alleged administrator Evgenii Ptitsyn (aliases: "derxan" and…

Ransomware Gang Akira leaks unprecedented number of victims’ data in one day

Category Details Threat Actors Akira ransomware Group (Ransomware-as-a-Service). Campaign Overview Published data from 35 victims…

Ransomware Group called Hunters Claims attack for Mantinga.

CategoryDetailsThreat ActorsHunters International ( Acquired the Hive source code and website from the Original Developers. )Campaign…

Dissecting Sodinokibi Ransomware Attacks: Bringing Incident Response and Intelligence Together in the Fight

Category Details Threat Actors Sodinokibi (REvil), QakBot operators, Valak operators, Ransomware affiliates Campaign Overview Ransomware…

Threat actor believed to be spreading new MedusaLocker variant since 2022

CategoryDetailsThreat ActorsFinancially motivated group, possibly an Initial Access Broker (IAB) or affiliate of a ransomware…

Hungary confirms hack of defense procurement agency

CategoryDetailsThreat ActorsINC Ransomware (also known as INC Ransom).Campaign OverviewTargeted Hungary's defense procurement agency (VBÜ), breached…

ShrinkLocker Ransomware: What You Need To Know

Category Details Threat Actors ShrinkLocker Ransomware operators, possibly inspired by previous abuses of BitLocker by…

Ransomware Diaries Volume 6: Lie to me. A Bassterlord Ransomware Story

  Category Details Threat Actors Bassterlord (also known as AL3xL7, Fisheye, Sinner911) Campaign Overview Involved…

The State of Cloud Ransomware in 2024

Category Details Threat Actors BianLian, Rhysida, IndoSec, Cl0p Ransomware group Campaign Overview Cloud ransom attacks…