New Android spyware “KoSpy” linked to North Korean APT37
A new Android spyware, dubbed “KoSpy,” has been discovered by researchers at Lookout, adding another concerning tool to the arsenal…
Akira ransomware’s ingenious IoT gambit: when webcams become cyberweapons
Akira group demonstrated how unsecured IoT devices can bypass enterprise-grade defenses. In a case analyzed by S-RM, attackers weaponized a…
The CrazyHunter ransomware attack on Makai Hospital
On February 9, 2025, Makai Memorial Hospital in Taiwan became the latest victim of a devastating ransomware campaign orchestrated by…
Fog’s dubious GitLab claims: investigation on instances
One name that has been gaining traction since late January is Fog, a ransomware operation that has been particularly vocal…
Black Basta and CACTUS ransomware: shared BackConnect module signals affiliate transition
Recent analysis has revealed a significant overlap in the tactics, techniques, and procedures (TTPs) employed by the Black Basta and…
Anubis: new ransomware threat
A new player has emerged in the ransomware landscape: Anubis. This group, first observed in December 2024, is quickly making…
Ghost Ransomware: an analysis of tactics, targets, and techniques
A joint advisory from CISA, the FBI, and the MS-ISAC sheds light on the activities of the Ghost ransomware gang,…
Pegasus spyware detected on 11 of 18,000 devices during one month of testing
Recent findings from iVerify have raised alarms about the pervasive threat of Pegasus spyware, traditionally associated with high-profile targets, now…