Recently published research by Group IB’s threat intelligence team uncovered a threat actor related to five ransomware strains. It gave researchers insider knowledge of ransomware-as-a-service (RaaS) operations. Security researchers looked to infiltrate the RaaS network by applying to be an affilia
On October 20, 2023, Europol announced that authorities had seized Ragnar Locker's extortion and data leak website as part of an international law enforcement operation. A day earlier, Bleeping Computer broke the news and confirmed the law enforcement operation did indeed occur, according to a Euro
Google, Cloudflare, and Amazon recently prevented the largest Distributed Denial of Service (DDoS) attack on record. Moreover, the attack employed a new technique not seen before, making the attack's prevention even more special. Amazon defines a DDoS attack as, A Denial of Service (DoS) a
Almost yearly, a major card skimming attack occurs that deserves media attention. Often simply referred to as Magecart attacks, central to these attacks is modifying JavaScript code on the end user side to steal the card data entered by the unsuspecting victim. To carry out this primary function, h
In a recent report by security firm NSFOCUS, details of a new threat actor emerged. Named AtlasCross by researchers, the attack campaign was discovered when researchers discovered suspicious documents that formed part of a phishing campaign. Upon further investigation, researchers believed they stu
On September 11, news reports began emerging stating that MGM Resorts International had suffered a cyber incident and had shut down several critical IT systems. This was soon followed by MGM posting to their Twitter account acknowledging they had suffered a cyber incident. Still, the statement was
Following the publication of new research by security firm Sentinel One, a new infostealer has been seen in the wild. Titled MetaStealer, not to be confused with another info-stealer, META, targets Intel-based MacOS systems. Researchers noted that Apple’s XProtect will detect some instances of
According to a recent report published by Microsoft, a series of attack campaigns targeting organizations in Taiwan. Security researchers at the Redmond tech giant have attributed the attacks to an advanced persistent threat actor tracked by Microsoft as Flax Typhoon. The activities of this t
According to Microsoft’s Threat Intelligence Team, a new version of the BlackCat ransomware, also tracked as ALPHV, has been seen dropping the Impacket networking framework and the Remcom hacking tool during the infection process. Both the framework and the hacking tool can be used by threat actors
At PCRisk, we have closely followed the trials and tribulations associated with the Raccoon Stealer spyware, also often referred to as an info stealer. The last time we covered the topic was when Raccoon Stealer 2.0 emerged. The malware's developers seemed to have taken a 6-month break startin