BlackCat/ALPHV Ransomware Victim: The Source
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
threatintel
Sliver C2 Detected – 156[.]245[.]19[.]127:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Sliver C2 Detected – 146[.]59[.]10[.]116:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: Microsoft Releases Security Updates for Multiple Products
Microsoft Releases Security Updates for Multiple Products Microsoft has released security updates to address vulnerabilities in multiple products. A cyber threat...
CISA: ISC Releases Security Advisories for BIND 9
ISC Releases Security Advisories for BIND 9 The Internet Systems Consortium (ISC) released security advisories to address vulnerabilities affecting multiple...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on February 13, 2024. These...
Atomic Stealer Rings In The New Year With Updated Version
Last year, we documented malware distribution campaigns both via malvertising and compromised sites delivering Atomic Stealer (AMOS) onto Mac users....
Pikabot Distributed Via Malicious Ads
During this past year, we have seen an increase in the use of malicious ads (malvertising) and specifically those via...
New Metastealer Malvertising Campaigns
MetaStealer is a popular piece of malware that came out in 2022, levering previous code base from RedLine. Stealers have...
Ransomware Review January 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Ransomware Review February 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Nitrogen Shelling Malware From Hacked Sites
Nitrogen is the name given to a campaign and associated malware that have been distributed via malicious search ads. Its...
Malicious Ads For Restricted Messaging Applications Target Chinese Users
An ongoing campaign of malicious ads has been targeting Chinese-speaking users with lures for popular messaging applications such as Telegram...
2024 State Of Ransomware In Education 92 Spike In K 12 Attacks
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Ransomware In 2023 Recap 5 Key Takeaways
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Sliver C2 Detected – 104[.]237[.]233[.]114:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Sliver C2 Detected – 23[.]254[.]204[.]15:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Sliver C2 Detected – 135[.]181[.]25[.]255:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Sliver C2 Detected – 45[.]95[.]187[.]235:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Akira Ransomware Victim: Sanok Rubber Company Spólka Akcyjna
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Hunters International Ransomware Victim: United Africa Group Ltd[.]
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Hunters International Ransomware Victim: Owens Group
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Hunters International Ransomware Victim: InstantWhip
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
