Interesting Research Blogs By Threat Intelligence(TI) Companies
Every Threat intelligence companies help to protect the organization from cyber theft, exposure to dark web, cyber crimes, and much more. An everyday new variant of malware, and vulnerability are lashing the organization. The threat intelligence companies investigated the issues and released a blog to make aware of the people & organization. Every organization has a research team.The research team always release news & reports about their day to day life investigation like new variant malware, threats, leakage of data , & vulnerability. In this blog, i’m going to share about interesting research blogs released by threat intelligence companies.
Black Basta Ransomware — Cyble
Black basta ransomware is a new malware group targeting several high value organizations. This group extracted around 2.5 Gb data from this attack. This Ransomware encrypt all the data and delete backup files from the infected system. Cyble research team has investigate black basta ransomware and released a blog about it on may 2022.
Black Basta Ransomware
A new ransomware group has emerged and has been highly active since April 2022, targeting multiple high-value…
Black Cat Ransomware — cybereason
Black cat ransomware created in rust programming language. It unpatched Exchange server vulnerabilities to gain access to targeted networks. Once attacker gaining entry point, to gather information compromised machines, it being used on every victim’s Tor payment site. Using of rust programming language makes process fast and run along with cross platforms. Take a look of below attachment.
Cybereason vs. BlackCat Ransomware
Since its first emergence in November 2021, the Cybereason Nocturnus team has been tracking the BlackCat Ransomware…
0mega ransomware — cyware
Its new ransomware has checked the targeted organization all over the world. It launches double-extortion attacks and claim millions of data as ransom. This attack happens in may. It nearly leaks 152 GB of stolen data. It encrypts the file with extension of .0mega. If the demanded ransom wasn’t paid, the crew has leaked the data in their site.
New 0mega Ransomware Joins the Double Extortion Threat Landscape | Cyware Hacker News
A new ransomware operation, dubbed 0mega, is targeting organizations across the world in double-extortion schemes and…
REvil — Malwarebytes
This ransom is one of the most shoddy and perilous operation. It is biggest ransomware attack all the time. The crew use variety of method to compromise network and scatter the ransomware. Then the crew spilt the ransom with the threat actors who develop REvil. REvil is also known as Sodinokibi or Sodin.
Ransomware: April 2022 review
The Malwarebytes Threat Intelligence team monitors the threat landscape continuously and produces monthly ransomware…
Thanks for reading will see you again with another interesting topic…