Related Families: GateDoor
Verticals Targeted: Cryptocurrency
RustDoor MacOS Backdoor
Feb 26, 2024 11:51:18 AM / by The Hivemind posted in Threat Bulletin, Ransomware, ALPHV, Backdoor, MacOS, Mac, Apple, RustDoor, GateDoor
ALPHV Targeting ONG, Critical Infrastructure Entities
Feb 23, 2024 2:25:34 PM / by The Hivemind posted in Threat Bulletin, Critical Infrastructure, Ransomware, BlackCat, ALPHV, Energy, ONG, Oil & Gas
Verticals Targeted: Critical Infrastructure, Energy, Oil & Gas
Executive Summary
ALPHV recently claimed responsibility for a cybersecurity incident targeting Canada's Trans-Northern Pipelines.
VajraSpy Android Spyware
Feb 20, 2024 12:02:15 PM / by The Hivemind posted in Threat Bulletin, APT, Android, Malware, Spyware, Mobile, VajraSpy
Executive Summary
PurpleFox Botnet Targeting Entities in Ukraine
Feb 16, 2024 11:44:26 AM / by The Hivemind posted in Ukraine, Threat Bulletin, Backdoor, Trojan, Botnet, rootkit, Exploit Kit, PurpleFox
Executive Summary
Faust Ransomware
Feb 12, 2024 1:07:27 PM / by The Hivemind posted in Threat Bulletin, Ransomware, Windows, Faust, Phobos
Related Families: Phobos
Executive Summary
Faust is a newly discovered variant of Phobos ransomware delivered via an office document containing a malicious VBA script.
New Zloader Variant Discovered
Feb 9, 2024 1:16:59 PM / by The Hivemind posted in Threat Bulletin, Windows, Trojan, Zloader, ZeuS, 64-bit
Related Families: ZeuS
Executive Summary
A new variant of the modular trojan Zloader was recently identified. The new variant has been in development since September 2023.
Cactus Ransomware
Feb 5, 2024 2:04:38 PM / by The Hivemind posted in Threat Bulletin, Critical Infrastructure, Ransomware, Energy, Cactus
Verticals Targeted: Energy
Executive Summary
Cactus is a ransomware family that has been active since at least March 2023 and has been gaining momentum in recent months. Cactus recently claimed an attack on Schneider Electric.
ColdRiver Using Spica Backdoor
Feb 2, 2024 1:06:16 PM / by The Hivemind posted in Russia, Threat Bulletin, Backdoor, Spica, ColdRiver