Low-profile Threat Actor observed imitating NoEscape Ransomware
Cyble Research and Intelligence Labs uncovers a possible crafty imitator of the infamous NoEscape Ransomware.
Ransomware
ALPHV Ransomware Data Leak Site Embraces API Integration
The Shift from RSS Feeds in Data Extortion ALPHV ransomware has gained attention recently due to its distinctive and unconventional methods deployed on its leak sites. Recently ALPHV ransomware released a Python crawler designed to synchronize their leak posts and attachments with any database. The crawler has a feature that ensures that only modified or …
ALPHV Ransomware Data Leak Site Embraces API Integration Read More »
Kanti: A NIM-Based Ransomware Unleashed in the Wild
Cyble Research and Intelligence Labs analyzes Kanti, a new NIM-based ransomware targeting cryptocurrency users.
Microsoft Zero Day Vulnerability CVE-2023-36884 Being Actively Exploited
CRIL analyzes the impact of Zero-Day Exploit for CVE-2023-36884 in cyber espionage and ransomware operations.
ARCrypt Ransomware Evolves with Multiple TOR Communication Channels
CRIL analyses an updated version of ARCrypt ransomware and an unconventional communication method attackers use.
Underground Team Ransomware Demands Nearly $3 Million
CRIL analyzes Underground Team, a new ransomware strain employing novel approaches to extort a ransom payment of nearly $3 million.