XWorm malware resurfaces with ransomware module, over 35 plugins

New versions of the XWorm backdoor are being distributed in phishing campaigns after the original developer, XCoder, ...

Hackers now use Velociraptor DFIR tool in ransomware attacks

Threat actors have started to use the Velociraptor digital forensics and incident response (DFIR) tool in attacks that deploy ...
CSO Online

Open-source DFIR Velociraptor was abused in expanding ransomware efforts

China-based threat actors abused outdated Velociraptor to maintain persistence and help deploy Warlock, LockBit, and Babuk ...
CSO Online

The ultimate business resiliency test: Inside Kantsu’s ransomware response

The Japanese logistics company’s chief executive shares what it requires for a business to survive a cyberattack that grinds ...
Computer Weekly

Alert over Medusa ransomware attacks targeting Fortra MFT

Microsoft warns it is seeing potential mass exploitation of a Fortra GoAnywhere vulnerability by a threat actor linked to the Medusa ransomware-as-a-service operation.

Japan's Asahi hack that halted beer production claimed by Qilin ransomware group

Qilin, a ransomware group with a track record of cyberattacks on major entities around the world, claimed responsibility on ...

Microsoft warns critical GoAnywhere security bug is being exploited by ransomware gang, so be on your guard

Microsoft is warning that a ransomware group is exploiting a maximum-severity vulnerability recently found in GoAnywhere ...