DuneQuixote campaign targets Middle Eastern entities with “CR4T” malware

Category Details Threat Actors Unnamed group behind the "DuneQuixote" campaign Campaign Overview Targets government entities…

Lazarus and the FudModule Rootkit: Beyond BYOVD with an Admin-to-Kernel Zero-Day

CategoryDetailsThreat ActorsLazarus GroupCampaign OverviewExploitation of a zero-day vulnerability in the appid.sys AppLocker driver to gain…

BlackCat Ransomware Affiliate TTPs | Huntress

Category Details Threat Actors ALPHV/BlackCat Ransomware group, using Ransomware-as-a-service (RaaS). Campaign Overview Attack targeting healthcare…

Ransomware Deployment Attempts Via TeamViewer | Huntress

Category Details Threat Actors Unknown actor, possibly related to LockBit 3.0 Ransomware campaigns. Campaign Overview…

Top-Ranking Banking Trojan Ramnit out to steal payment card data

Category Details Threat Actors Ramnit Gang Campaign Overview Ongoing campaigns targeting e-commerce brands and hospitality…

Trickbot Rising — Gang doubles down on infection efforts to amass network Footholds

CategoryDetailsThreat ActorsITG23 (TrickBot Gang/Wizard Spider), Hive0105 (BazarCall), Hive0106 (TA551/Shathak/UNC2420), Hive0107Campaign OverviewAggressive malware distribution expansion targeting…

Analysis of Diavol Ransomware reveals possible link to TrickBot gang

Category Details Threat Actors Likely linked to the TrickBot group (ITG23), a well-known cybercrime Syndicate…