Tag: Threat Actors

Since its discovery in March 2023, the Cactus Ransomware Group has expanded its presence across digital platforms, exploiting weaknesses, notably in VPNs.

Operating since April 2022, 8Base is a ransomware group that has gained notoriety for its aggressive tactics and targeting of small and medium-sized businesses.

Threat actors are capitalizing on unpatched Atlassian servers to unleash Cerber ransomware, a tactic aimed at compromising confidentiality...

The BlackSuit ransomware operation emerged in early April/May of 2023. The group is a multi-pronged extortion outfit, encrypting and exfiltrating victim data...

Threat actors are exploiting GitHub's search feature to trick users into downloading malware-laden repositories disguised as popular projects....

Before public reporting, infrastructure linked to the Russia-based Turla APT group was found in an organization possibly located in Albania....

Cisco Talos recently uncovered a new threat actor known as "CoralRaider," suspected to originate from Vietnam and motivated by financial gain.

Threat actors have recently exploited a vulnerability in Fortinet Forticlient EMS, identified as CVE-2023-48788, to infiltrate targeted systems...

Earth Freybug is a cyberthreat group that has been active since at least 2012 that focuses on espionage and financially motivated activities.

Agenda is an emerging ransomware family, that has recently been targeting critical sectors such as healthcare and education industries.