A critical vulnerability in the Python-based data exfiltration utility employed by the notorious Cl0p ransomware group, revealing that the malware's own infrastructure can be exploited for remote code execution attacks.
The vulnerability, discovered in tools widely distributed during the group's destructive 2023-2024 MoveIt campaigns,...
The U.S. Department of Treasury's Office of Foreign Assets Control (OFAC) has imposed sanctions on Aeza Group, a Russian-based bulletproof hosting service provider that has facilitated cybercriminal operations targeting American victims and organizations worldwide.
The coordinated action, conducted in partnership with the United Kingdom's...
A ransomware attack targeting the Radix foundation has compromised data from multiple federal administration offices, marking a significant cybersecurity incident that has prompted coordinated response efforts across government agencies.
The attack, which occurred on June 30, 2025, involved the theft and encryption of sensitive...
As ransomware groups grapple with internal upheavals and external attacks, the cyber threat landscape is witnessing the rise of a new, highly sophisticated actor: Qilin.
This ransomware-as-a-service (RaaS) operation is rapidly expanding its footprint, targeting enterprises with both Windows and Linux systems, especially those...
First observed in March 2025 targeting Windows systems, the BERT ransomware group escalated its operations in May 2025 by launching attacks on Linux machines.
Analysis of two Linux-focused ELF samples reveals an 80% codebase overlap with Sodinokibi (Revil) ransomware, a notorious group linked to...
The cybersecurity world is on high alert as a new, highly destructive ransomware group known as Anubis emerges with a devastating dual-threat model.
Unlike typical ransomware, Anubis not only encrypts files but also boasts a unique "wipe mode" that ensures data destruction is irreversible,...