Researchers Hack Medusa Ransomware Group’s Cloud
In a recent Medusa Ransomware Group attack, researchers infiltrated the attackers' cloud storage containing exfiltrated victim data, where the attackers employed Rclone, a popular...
New ShadowRoot Ransomware Targets Businesses with Dangerous Weaponized PDFs
X-Labs research has identified a new ransomware targeting Turkish businesses, where the attack vector involves phishing emails with malicious PDF attachments from the internet.ru...
BianLian Ransomware Exploits RDP Credentials for Initial Access
BianLian, a prolific ransomware group, has rapidly expanded since its 2022 debut, employing sophisticated techniques and adapting to evolving threats. Exploiting RDP credentials, ProxyShell,...
Akira Ransomware Devastates Airlines Using Legit Tools
In June 2024, a Latin American airline suffered an Akira ransomware attack, with threat actors initially gaining unauthorized SSH access to exfiltrate critical data...
Mallox Ransomware Ravages Linux Servers in the Wild: Decryptor Uncovered!
Mallox ransomware, a multi-extortion threat active since mid-2021, has shifted to a Ransomware-as-a-Service model since mid-2022.
Initially targeting Windows systems with.NET,.EXE, or.DLL payloads, Mallox now...
