Tag: Affiliates
-
LockBit Ransomware Affiliates Leverage Citrix Bleed Vulnerability (CVE-2023-4966)
CVE-2023-4966 stems from a session management issue in the web-based management interface used to configure Citrix NetScaler ADCs and …
-
US Government Warns Healthcare is Biggest Target for BlackCat Affiliates
The US government has warned the healthcare sector that it is now the biggest target of the BlackCat ransomware group. The joint advisory …
-
VexTrio: The Uber of Cybercrime – Brokering Malware for 60+ Affiliates
The threat actors behind ClearFake, SocGholish, and dozens of other actors have established partnerships with another entity known as …
-
How LockBit used Citrix Bleed to breach Boeing and other targets
CVE-2023-4966, aka “Citrix Bleed”, has been exploited by LockBit 3.0 affiliates to breach Boeing’s parts and distribution business, …
-
LockBit Ransomware Exploiting Critical Citrix Bleed Vulnerability to Break In
Multiple threat actors, including LockBit ransomware affiliates, are actively exploiting a recently disclosed critical security flaw in …
-
University of Michigan Faces Data Breach Impacting Many of its Affiliates
The University of Michigan recently announced a data breach that took place in August. Cyber attackers broke into the university’s …
-
DarkGate Malware Activity Spikes as Developer Rents Out Malware to Affiliates
A new malspam campaign has been observed deploying an off-the-shelf malware called DarkGate. “The current spike in DarkGate malware …
-
North Korean Affiliates Suspected in $40M Cryptocurrency Heist, FBI Warns
The U.S. Federal Bureau of Investigation (FBI) on Tuesday warned that threat actors affiliated with North Korea may attempt to cash out …
-
Qilin Ransomware Operation Outfits Affiliates With Sleek, Turnkey Cyberattacks
Researchers infiltrate a ransomware operation and discover slick services behind Qilin’s Rust-based malware …
-
Inside Qilin Ransomware: Affiliates Take Home 85% of Ransom Payouts
Ransomware affiliates associated with the Qilin ransomware-as-a-service (RaaS) scheme earn anywhere between 80% to 85% of the ransom …
-
Conti Affiliates Black Basta, BlackByte Continue to Attack Critical Infrastructure
Between the end of February and mid-July 2022, 81 victim organizations were listed on the BlackByte and Black Basta data leak sites. Of …
-
Ransomware Affiliates Adopt Data Destruction
Ransomware affiliates appear to be dabbling with new data destruction capabilities in a bid to evade detection, increase their chances of …
●●●