The PolySwarm Blog

Analyze suspicious files and URLs, at scale, millions of times per day. Get real-time threat intel from a crowdsourced network of security experts and antivirus companies competing to protect you.

CVE-2022-31199 Used in Truebot Attacks

Jul 14, 2023 2:36:23 PM / by The Hivemind posted in Threat Bulletin, Cl0p, Downloader, FlawedGrace, CVE-2022-31199, Truebot

0 Comments

Related Families: Cl0p

Executive Summary

New Truebot variants have been observed on victim machines that were compromised using CVE-2022-31199. The activity is targeting entities in

Read More

Cl0p Reportedly Using MOVEit 0day (CVE-2023-34362)

Jun 16, 2023 2:33:59 PM / by The Hivemind posted in Microsoft, Cl0p, LemurLoot, CVE-2023-34362, MOVEit

0 Comments

Associated Families: LemurLoot
Verticals Targeted: Financial, Government

Executive Summary

Industry researchers from multiple vendors observed threat actors leveraging CVE-2023-34362. Microsoft attributed the activity to a Cl0p affiliate dubbed Lace Tempest.

Read More

Cl0p Linux Variant

Feb 28, 2023 12:53:32 PM / by The Hivemind posted in Threat Bulletin, Ransomware, Linux, Cl0p

0 Comments

Verticals Targeted: Education, Various

Executive Summary

SentinelLabs recently reported on a newly discovered Linux variant of Cl0p ransomware. The Linux variant is similar to the Windows variant but uses a flawed encryption logic.

Read More
All posts

Subscribe to Email Updates

Lists by Topic

see all

Posts by Topic

See all

Recent Posts

Join the Marketplace

For Enterprises and Businesses

Learn More

For Security Experts and AV Companies

Learn More