The PolySwarm Blog

Analyze suspicious files and URLs, at scale, millions of times per day. Get real-time threat intel from a crowdsourced network of security experts and antivirus companies competing to protect you.

CVE-2022-31199 Used in Truebot Attacks

Jul 14, 2023 2:36:23 PM / by The Hivemind posted in Threat Bulletin, Cl0p, Downloader, FlawedGrace, CVE-2022-31199, Truebot

0 Comments

Related Families: Cl0p

Executive Summary

New Truebot variants have been observed on victim machines that were compromised using CVE-2022-31199. The activity is targeting entities in

Read More

Cl0p Reportedly Using MOVEit 0day (CVE-2023-34362)

Jun 16, 2023 2:33:59 PM / by The Hivemind posted in Microsoft, Cl0p, LemurLoot, CVE-2023-34362, MOVEit

0 Comments

Associated Families: LemurLoot
Verticals Targeted: Financial, Government

Executive Summary

Industry researchers from multiple vendors observed threat actors leveraging CVE-2023-34362. Microsoft attributed the activity to a Cl0p affiliate dubbed Lace Tempest.

Read More

Cl0p Linux Variant

Feb 28, 2023 12:53:32 PM / by The Hivemind posted in Threat Bulletin, Ransomware, Linux, Cl0p

0 Comments

Verticals Targeted: Education, Various

Executive Summary

SentinelLabs recently reported on a newly discovered Linux variant of Cl0p ransomware. The Linux variant is similar to the Windows variant but uses a flawed encryption logic.

Read More

Subscribe to Email Updates

Lists by Topic

see all

Posts by Topic

See all

Recent Posts