SEARCH
Archive
Play Ransomware Group Using New ProxyNotShell Exploit
Play ransomware actors have been using a previously undocumented exploitation method for the ProxyNotShell Exchange flaws.
Microsoft-Signed Malicious Driver Used in Pre-Ransomware Intrusions
Researchers have found a malicious driver signed by Microsoft used in the lead up to Hive and Cuba ransomware deployments.
Hive Ransomware Attacks Target FortiOS, Microsoft Exchange Flaws
The Hive ransomware has victimized 1,300 companies globally as of November, in particular targeting healthcare sector organizations, according to U.S. federal agencies in a new advisory.
U.S. Justice Department Charges LockBit Ransomware Suspect
A 33-year-old dual Russian and Canadian national was arrested this week for allegedly participating in LockBit ransomware attacks.
New Analysis Ties Black Basta Ransomware to FIN7 Tools
Researchers at SentinelLabs have identified several links between the Black Basta ransomware actors and the FIN7 cybercrime group.