Advertisement
Qilin and Warlock Ransomware Bypass 300+ EDR Tools via BYOVD
Threat actors Qilin and Warlock use Bring Your Own Vulnerable Driver (BYOVD) tactics and msimg32.dll to disable security software on compromised endpoints.
BKA Unmasks REvil Leadership Behind 130 German Ransomware Attacks
Germany's BKA unmasks the leadership of the REvil (Sodinokibi) ransomware group, including the representative UNKN, following a major threat intel investigation.
Germany Doxes UNKN: Identity of REvil and GandCrab Leader Revealed
German authorities identify Daniil Maksimovich Shchukin as UNKN, the lead operator behind the notorious GandCrab and REvil ransomware operations.
Multi-Extortion Ransomware Tactics: A Deeper Dive
Analyze the evolution of multi-extortion ransomware, its reliance on data leaks, and strategies for mitigating the impact of exfiltrated data.
Ransomware Preparation: Healthcare Facilities' Defense Strategy
Hospitals face inevitable ransomware attacks. Learn why proactive incident response planning, regular rehearsals, and robust technical controls are crucial for defense.
TeamPCP Supply Chain Campaign: First Victim, Cloud Enumeration, Ransomware
Detailed analysis of TeamPCP supply chain campaign, covering the first confirmed victim, post-compromise cloud enumeration tactics, and dual ransomware operations.
Bearlyfy Targets 70+ Russian Firms with Custom GenieLocker Ransomware
Pro-Ukrainian group Bearlyfy deploys GenieLocker ransomware in a campaign targeting over 70 Russian organizations to cause maximum business disruption.
Silnikau Sentenced: BitPaymer Ransomware Botnet Operator Receives 2 Years
Russian national Maksim Silnikau sentenced for managing a botnet used in BitPaymer ransomware attacks targeting 72 U.S. companies and demanding $100 million.
U.S. Sentences Yanluowang Ransomware Facilitator Aleksei Volkov
Russian national Aleksei Volkov sentenced to 81 months for facilitating Yanluowang ransomware attacks, causing $9M in damages to U.S. organizations.
M-Trends 2026: Evolving Ransomware, Persistence, and SaaS Attack Vectors
M-Trends 2026 reveals critical shifts in adversary TTPs: destructive ransomware, zero-day exploitation for persistence, and voice phishing for SaaS access.
Mandiant M-Trends 2026: Handoff Time Shrinks to 22 Seconds
Mandiant's M-Trends 2026 report reveals a drastic reduction in initial access handoff times to 22 seconds, demanding faster detection and response.
Beast Gang OpSec Fail: Ransomware Server Exposes TTPs
Beast Gang's OpSec failure exposes their cloud ransomware server, revealing aggressive tactics against network backups. Defenders gain insight into their TTPs.