A Deep Dive Analysis of Butewoorse Ransomware Targeting Mobile Devices
Cyble’s research on the Butewoorse ransomware which locks Android devices and demands ransom from the victim in exchange for unlocking it.
Malware
Ransomware Attacks Trends – May 2021 Snapshot
The month of May was quite dramatic from the ransomware attacks perspective. The big picture view of the ransomware attacks are below (grouped by industries and number of victims): The intent of bringing these insights is to understand better and identify any patterns. We are not interested in highlighting any particular breach. Some of the …
Popular Hacking Forum, XSS, Says NO to Ransomware and Lockers
The recent attack on Colonial Pipeline has raised the eyebrows of many US policymakers and has put a lot of focus on the DarkSide ransomware threat group. The Biden-Harrris Administration in the US has launched iniaitives to address the Colinial pipeline incident.. The ransomware group has published multiple advertisements in the past to hire hackers, …
Popular Hacking Forum, XSS, Says NO to Ransomware and Lockers Read More »
Confucius APT Android Spyware Targets Pakistani and Other South Asian Regions
Two Android spyware strains named Hornbill and SunBird were recently discovered with possible connections to the advanced persistent threat (APT) group called Confucius. The group first appeared in 2013 as a hacking group, primarily pursuing Pakistani and other South Asian targets. Confucius has created mainly Windows malware in the past. However, after the spying app ChatSpy came …
Confucius APT Android Spyware Targets Pakistani and Other South Asian Regions Read More »
Ngrok Platform Abused by Hackers to Deliver a New Wave of Phishing Attacks
Cyble’s research team has found an uptick in phishing campaigns targeting multiple organizations, including financial institutes, by abusing the ngrok platform, a secure and introspectable tunnel to the localhost.
