Shuckworm hackers attack Ukrainian organizations with new variant of Pteredo backdoor
Specialists from the cybersecurity company Symantec reported attacks by the cybercriminal group Shuckworm (Armageddon or Gamaredon) on Ukrainian organizations using a new version of the Pteredo (Pteranodon) custom backdoor. The…
PRODAFT Published PYSA Ransomware Report
Recently specialists from PRODAFT (Proactive Defense Against Future Threats) published an extensive report about the infamous ransomware variant PYSA. The detailed information in the report " PYSA (Mespinoza) In-depth analysis"…
Nation-State Threat Actors are an Actual Menace, According to CISA
On April 13, the US government (specifically, the Department of Energy, the Cybersecurity and Infrastructure Security Agency, the National Security Agency, and the Federal Bureau of Investigation) made a warning…
Experts Analyzed the Activities of the PYSA Cyber-Extortion Group
Specialists from the Swiss cybersecurity company PRODAFT have published the results of an 18-month study on the PYSA cyber-extortion group. PYSA (an acronym for "Protect Your System, Amigo") is the…
RuRansom Malware Destroys Data in Russian Systems
VMware specialists spoke about the activity of the RuRansom wiper, which attacks Russian systems and deliberately destroys its data, including backups. Unlike ordinary cryptographers who extort ransoms from the victims,…
Anonymous hackers published the mail database of the Ministry of Culture of Russia
The media discovered that Anonymous hackers had made public a database of emails from the Russian Ministry of Culture, the administration of the city of Blagoveshchensk, and the office of…
The US won’t cooperate with Russia on ransomware anymore
The US suspends its cooperation with Russia on ransomware criminals amidst the brutal war the Russian government wages against Ukraine, State Department spokesperson told Sputnik. "The Russian government is engaged…
Law enforcement officers closed the hacker resource RaidForums
During the international operation TOURNIQUET, which was coordinated by Europol, the well-known hacker resource RaidForums, which was mainly used to trade in stolen databases, was closed. The administrator of RaidForums…
FFDroider Stealer: The New Hazard To Social Networks
FFDroider Stealer is the second malware of this type that popped out last month. The BlackGuard Stealer, which was reviewed by Zscaler a week ago, is quite similar to the…
Meta Infostealer Malware Spread via Spam
Meta, a newly crafted information-stealing malware, is distributed via a vast spam spree. The mechanism of the stealer injection within this campaign is already well-known. However, Meta is now a…
Leaked Conti ransomware source codes were used to attack Russian authorities
In March 2022, the source codes of the Conti malware were made public, and now, apparently, other hackers are starting to use them, turning the ransomware against Russian authorities and…
Hydra Market Shut Down by the German Authorities
The United States, together with its European allies, has managed to get Hydra market shut down. Servers of this shop, a Russian-language darknet platform, were reported on Tuesday, April 5,…
