Cybercrime, Black Basta ransomware could be linked to Conti
The cybersecurity researcher MalwareHunterTeam: Similarities in the leak and payment pages, and in operator behavior. Minerva: Malware maintains persistence via Windows Fax System.
Cybercrime, is Mindware a new gang one or a rebrand?
The cybersecurity researcher MalwareHunterTeam explains that their ransomware belongs the the SFile family, most likely SFile2. Their start appearing around middle of last month.
Cybercrime, Hive ransomware group blackmails healthcare institutions in Italy
Cybersecurity researcher MalwareHunterTeam publishes a chat confirming that the commitment not to attack health-related targets is false.
Cybercrime, Night Sky started hitting companies worldwide
The new ransomware group has been spotted by the cybersecurity expert MalwareHunterTeam. As usual, it exploits the double extortion scheme.
Cybercrime, Purple Fox released by Telegram installer for desktop
The malware is downloaded and activated by one of the two files contained within the executable. Goal: to reduce the chance of being detected and stopped.
Cybercrime, ClipBanker and PhoenixMiner conveyed via fake saved photos
The exe file is redline stealer. This, once opened, automatically downloads the other two malware: a banking trojan and a cryptominer.
Cybercrime, Click Assistant – Auto Clicker spread malware on Google Play Store
Installed more than 10 million times, it hides an Android Trojan. Recently, the Squid Game app was removed from the platform for the same reason.
Cybercrime, HelloKitty gang targets VMware ESXi servers
The cybersecurity expert MalwareHunterTeam: The group shut down them before encrypting files to prevent them from being locked and to avoid data corruption.
Cybercrime, Quakbot exploits U.K. STEEL EXPORTS LIMITED company certificates
New signed campaign to trick victims’ antivirus, allowing them to download and install the malware via attachment.
Cybercrime, REvil now can encrypt files in Windows Safe Mode
The cybersecurity expert MalwareHunterTeam discovered a ransomware sample with a command-line, which forces the computer to reboot before encrypting.