Ransomware actors are getting better at laundering their proceeds from attacks - but law enforcement authorities are also getting better at tracking illicit cryptocurrency funds down.
The BlackCat RaaS continues to pose a bigger threat as two well-known ransomware affiliates have added the payload into their arsenal.
Ransomware groups are using DNS tunneling more and more as a way to exfiltrate data and send commands to infected machines.
A threat cluster with significant overlap to the Evil Corp cybercriminal gang has started deploying the LockBit ransomware in an effort to evade U.S. sanctions.
The Karakurt data extortion group is stealing sensitive information from enterprises and holding it for ransom, CISA warns.