RaaS

Emulating the Petrifying Medusa Ransomware

| | adversary emulation, Broad-Based Attacks, living off the land, Medusa, RaaS, Ransomware, ransomware as a service
AttackIQ has released a new attack graph that emulates the behaviors exhibited by Medusa ransomware since the beginning of its activities in June 2021. Medusa is predominantly propagated through the exploitation of ...
AttackIQ
ransomware, attacks, Rubrik, cybersecurity, Ransomware, attacks, payment, RaaS, ransomware, attack, healthcare

Strengthening Security Posture in the World of Outsourced Ransomware-as-a-Service (RaaS)

| | attacks, Cybersecurity, Data Security, RaaS, Ransomware
These proactive defense measures - vulnerability management, MFA and EDR - remain critical in the ongoing battle against RaaS groups and bad actors ...
Security Boulevard

Emulating the Long-Term Extortionist Nefilim Ransomware

| | adversary emulation, Broad-Based Attacks, Financial Services, manufacturing, Nefilim, RaaS, Ransomware, ransomware as a service, transportation
AttackIQ has released a new attack graph that emulates the behaviors exhibited by the extortionist ransomware Nefilim during activities against multiple organizations, primarily based in North or South America, distributed in the ...
AttackIQ
Psychedelic doctor image, titled “Bad Medicine”

Black Basta Ascension Attack Redux — can Patients Die of Ransomware?

| | Ascension, Black Basta Ransomware, Conti, Conti Gang, Conti ransomware, Conti Ransomware Gang, exposed healthcare records, health care, health care organizations, Health Care Security, Health Insurance Portability and Accountability Act (HIPAA), healthcare, Healthcare company, Healthcare Compliance, Healthcare Compliance & Security, HIPAA, HIPAA Compliance, hipaa laws, RaaS, Ransomware, Ransomware-as-a-Service (RaaS), Russia, russia hacker, russia-based, russian, Russian Cyber War, Russian cybercrime, Russian government, Russian hacker, Russian hackers, Russian hacking, Russian malware, SB Blogwatch
Inglorious Basta(rds): 16 days on, huge hospital system continues to be paralyzed by ransomware—and patient safety is at risk ...
Security Boulevard
Closeup photo of street go and stop signage displaying Stop

FBI/CISA Warning: ‘Black Basta’ Ransomware Gang vs. Ascension Health

| | #StopRansomware, Ascension, Benefits of healthcare software, Black Basta Ransomware, cisa, CISA Threat Update, CISA warning, CISA.gov, Conti, Conti Gang, Conti ransomware, Conti Ransomware Gang, exposed healthcare records, health care, health care organizations, Health Care Security, Health Insurance Portability and Accountability Act (HIPAA), healthcare, Healthcare company, Healthcare Compliance, Healthcare Compliance & Security, HIPAA, HIPAA Compliance, hipaa laws, NSA/CISA, RaaS, Ransomware, Ransomware-as-a-Service (RaaS), Russia, russia hacker, russia-based, russian, Russian Cyber War, Russian cybercrime, Russian government, Russian hacker, Russian hackers, Russian hacking, Russian malware, SB Blogwatch
Будет! Russian ransomware rascals riled a Roman Catholic healthcare organization ...
Security Boulevard
phishing cybersecurity

‘Darcula’ PhaaS Campaign Sinks Fangs into Victims

| | Phishing-as-a-Service (PhaaS), postal service, RaaS
A sprawling phishing-as-a-service (PhaaS) campaign that has been running since at least last summer is using more than 20,000 fake domains to target a wide range of organizations in more than 100 ...
Security Boulevard
ransomware RaaS

RaaS Groups Go Recruiting in Wake of LockBit, BlackCat Takedowns

| | affiliates, RaaS, Ransomware
The effects of the recent high-profile disruptions of LockBit’s and BlackCat ransomware operations by law enforcement agencies are rippling through the dark web, with smaller threat gangs looking to scoop up the ...
Security Boulevard

GootLoader: Unloaded

| | AttackIQ Flex, GootLoader, IAaaS, Initial-Access-as-a-Service, RaaS, ransomware as a service
GootLoader, a stealthy JavaScript-based downloader, has posed a persistent threat to Windows-based systems since 2020. In this article, we'll delve into who Gootloader is and how organizations can effectively emulate and test ...
AttackIQ
DOJ cryptocurrency scams

DOJ Seizes Ransomware Site as BlackCat Threatens More Attacks

| | ALPHV ransomware, BlackCat ransomware, Department of Justice (DOJ), FBI, RaaS
U.S. law enforcement agencies said they shut down the online operations of the notorious Russia-linked BlackCat ransomware-as-a-service (RaaS) group and developed a decryption tool that will help more than 500 victims regain ...
Security Boulevard
ransomware landscape, defenders, cybersecurity ransomware

Making Sense of the 2023 Ransomware Landscape

| | Cybersecurity, RaaS, Ransomware, Threat Intelligence
Understanding the current ransomware landscape is the first step to helping defenders protect their organizations ...
Security Boulevard
Load more