An emerging threat called Tortilla has been exploiting vulnerabilities in Microsoft (MS) Exchange servers hit with Babuk ransomware.
The BlackMatter ransomware group says it is closing up shop after pressure from authorities and the disappearance of some members.
A task force of European and U.S. agencies arrested 12 suspects in Switzerland and Ukraine as part of an action against a ransomware operation.
Didier Stevens has discovered several shared keypairs used by rogue Cobalt Strike implementations used by malicious actors.
A new email hijacking campaign by the TA551 attack group is installing the legitimate Sliver red-team tool as a payload, possibly for use in future ransomware operations.