The REvil ransomware group is back in full force, digitally assaulting new victims and leaking stolen data to a data leak site. The REvil ransomware operation, dubbed Sodinokibi, has been attacking organizations around the world since 2019, dema... Read more
In order to obtain illegitimate revenue, cybercriminals are increasingly targeting internet connections. According to researchers, in the cybercrime arena, an approach involving the usage of proxyware is gaining acceptance. Internet bandwidth is... Read more
The technical details of QakBot, a decade-old banking Trojan, were uncovered in a detailed analytical report by a security firm. It has been active since 2007, and it has continued to claim victims while evolving at the same time. Analysis of th... Read more
The Pysa ransomware operation’s PowerShell script gives us a sneak peek at the types of data they try to collect during a campaign. When ransomware gangs infiltrate a network, they usually start with a single device that they have restrict... Read more
Using previously published ProxyShell vulnerability exploits, the Conti ransomware group is hacking into Microsoft Exchange servers and compromising corporate networks. ProxyShell is a name for an exploit that uses three chained Microsoft Exchan... Read more