Related Families: BazarLoader, BazaLoader
BumbleBee Returns With New Infection Chain
Oct 28, 2024 12:26:54 PM / by The Hivemind posted in Threat Bulletin, Loader, Bumblebee, Operation Endgame, Evolving Threat
GorillaBot
Oct 23, 2024 11:56:41 AM / by The Hivemind posted in Threat Bulletin, DDoS, Mirai, Emerging Threat, GorillaBot, Gorilla Botnet
Related Families: Mirai
Verticals Targeted: Education, Government, Telecommunications, Financial, Gaming
Executive Summary
Gorilla Botnet, also known as GorillaBot, is a Mirai-based botnet family that recently gained momentum and notoriety.
BrainCipher Ransomware
Oct 21, 2024 12:07:07 PM / by The Hivemind posted in Threat Bulletin, Ransomware, Lockbit 3.0, Emerging Threat, BrainCipher, BrainCypher
Related Families: LockBit 3.0
Verticals Targeted: Media, Insurance, Legal Services, Healthcare, Retail, Software, Construction, Manufacturing, Real Estate, Education, Government
Executive Summary
BrainCipher ransomware, which was first observed in June 2024, is an emerging threat. BrainCipher is based on the leaked LockBit 3.0 builder and is functionally similar to LockBit 3.0.
Trinity Ransomware
Oct 18, 2024 2:30:02 PM / by The Hivemind posted in Threat Bulletin, Ransomware, Healthcare, Manufacturing, Emerging Threat, Trinity
Related Families: Venus, 2023Lock
Verticals Targeted: Healthcare, Manufacturing, Business Services
Perfectl Linux Malware
Oct 15, 2024 2:29:59 PM / by The Hivemind posted in Threat Bulletin, Linux, Cryptominer, Perfectl, Monero, Proxyjacking
Executive Summary
Perfectl is a malware family that targets misconfigured Linux servers. In a recent campaign, Perfectl was observed deploying cryptominers and proxyjacking software.
Silent Chollima Extortion Activity Targets US Entities
Oct 11, 2024 2:12:45 PM / by The Hivemind posted in Threat Bulletin, North Korea, Extortion, Silent Chollima, Andariel, APT 45, Stonefly, Onyx Sleet, Preft
Related Families: Preft
Octo2 Android Banking Trojan
Oct 7, 2024 2:06:59 PM / by The Hivemind posted in Threat Bulletin, Android, Trojan, Banking Trojan, Latrodectus, Octo, ExobotCompact
Related Families: Exobot, ExobotCompact, Octo
Verticals Targeted: Financial
Executive Summary
Octo2, an updated version of Octo Android banking trojan, was recently observed targeting Android users in Europe.
DragonForce Ransomware
Oct 4, 2024 1:05:42 PM / by The Hivemind posted in Threat Bulletin, Ransomware, Lockbit 3.0, Conti, evolving, Emerging, DragonForce
Related Families: LockBit 3.0, Conti
Verticals Targeted: Business Services, Construction, Retail, Telecommunications, Manufacturing, Mining, Government, Healthcare, Transportation, Energy, Software, Education