#ransomhub — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #ransomhub, aggregated by home.social.
-
Ransomware Under Pressure: Tactics, Techniques, and Procedures in a Shifting Threat Landscape
#CVE_2024_21762 #CVE_2021_27877 #CVE_2021_27878 #CVE_2021_40539 #CVE_2024_55591 #CVE_2019_6693 #CVE_2024_40766 #CVE_2023_4966 #CVE_2025_53771 #CVE_2025_53770 #CVE_2025_31324 #CVE_2024_3400 #CVE_2025_31161 #QilinGroup #QilinRansomware #Akira #REDBIKE #Cl0p #PLAY #SafePay #INCRansomware #RansomHub #DragonForce #UNC6016 #UNC2465
https://cloud.google.com/blog/topics/threat-intelligence/ransomware-ttps-shifting-threat-landscape/ -
Ransomware Under Pressure: Tactics, Techniques, and Procedures in a Shifting Threat Landscape
#CVE_2024_21762 #CVE_2021_27877 #CVE_2021_27878 #CVE_2021_40539 #CVE_2024_55591 #CVE_2019_6693 #CVE_2024_40766 #CVE_2023_4966 #CVE_2025_53771 #CVE_2025_53770 #CVE_2025_31324 #CVE_2024_3400 #CVE_2025_31161 #QilinGroup #QilinRansomware #Akira #REDBIKE #Cl0p #PLAY #SafePay #INCRansomware #RansomHub #DragonForce #UNC6016 #UNC2465
https://cloud.google.com/blog/topics/threat-intelligence/ransomware-ttps-shifting-threat-landscape/ -
Ransomware Under Pressure: Tactics, Techniques, and Procedures in a Shifting Threat Landscape
#CVE_2024_21762 #CVE_2021_27877 #CVE_2021_27878 #CVE_2021_40539 #CVE_2024_55591 #CVE_2019_6693 #CVE_2024_40766 #CVE_2023_4966 #CVE_2025_53771 #CVE_2025_53770 #CVE_2025_31324 #CVE_2024_3400 #CVE_2025_31161 #QilinGroup #QilinRansomware #Akira #REDBIKE #Cl0p #PLAY #SafePay #INCRansomware #RansomHub #DragonForce #UNC6016 #UNC2465
https://cloud.google.com/blog/topics/threat-intelligence/ransomware-ttps-shifting-threat-landscape/ -
Ransomware Under Pressure: Tactics, Techniques, and Procedures in a Shifting Threat Landscape
#CVE_2024_21762 #CVE_2021_27877 #CVE_2021_27878 #CVE_2021_40539 #CVE_2024_55591 #CVE_2019_6693 #CVE_2024_40766 #CVE_2023_4966 #CVE_2025_53771 #CVE_2025_53770 #CVE_2025_31324 #CVE_2024_3400 #CVE_2025_31161 #QilinGroup #QilinRansomware #Akira #REDBIKE #Cl0p #PLAY #SafePay #INCRansomware #RansomHub #DragonForce #UNC6016 #UNC2465
https://cloud.google.com/blog/topics/threat-intelligence/ransomware-ttps-shifting-threat-landscape/ -
Ransomware Under Pressure: Tactics, Techniques, and Procedures in a Shifting Threat Landscape
#CVE_2024_21762 #CVE_2021_27877 #CVE_2021_27878 #CVE_2021_40539 #CVE_2024_55591 #CVE_2019_6693 #CVE_2024_40766 #CVE_2023_4966 #CVE_2025_53771 #CVE_2025_53770 #CVE_2025_31324 #CVE_2024_3400 #CVE_2025_31161 #QilinGroup #QilinRansomware #Akira #REDBIKE #Cl0p #PLAY #SafePay #INCRansomware #RansomHub #DragonForce #UNC6016 #UNC2465
https://cloud.google.com/blog/topics/threat-intelligence/ransomware-ttps-shifting-threat-landscape/ -
TT @applebulteni : "RansomHub announced Luxshare, one of Apple's suppliers, as a victim of ransomware."
#RansomHub #ransomware #apple #ransomware -
Lovesac warns customers their data was breached after suspected RansomHub attack six months ago https://www.bitdefender.com/en-us/blog/hotforsecurity/lovesac-warns-customers-their-data-was-breached-after-suspected-ransomhub-attack-six-months-ago #Ransomware #databreach #ransomware #Guestblog #RansomHub #Dataloss
-
Manpower data breach impacted 144,180 individuals – Source: securityaffairs.com https://ciso2ciso.com/manpower-data-breach-impacted-144180-individuals-source-securityaffairs-com/ #rssfeedpostgeneratorecho #informationsecuritynews #ITInformationSecurity #SecurityAffairscom #CyberSecurityNews #PierluigiPaganini #SecurityAffairs #BreakingNews #SecurityNews #CyberCrime #Cybercrime #DataBreach #RansomHub #Manpower #hacking #Malware
-
Immer wieder hört man von Geschäftsleitern, dass #Cyberrisiken vernachlässigbar seien, weil man im unwahrscheinlichen Zweifelsfall einfach ein #Lösegeld zahlen kann und der Fall damit erledigt ist.
Doch nicht umsonst gibt es den Spruch "Wer einmal zahlt, zahlt auch zweimal." Am Beispiel der der rivalisierenden #Cybercrime-Gruppierungen "#DragonForce" und "#RansomHub" wird deutlich, dass "Ehre" unter Cyberkriminellen ein sehr zweifelhafter Begriff ist:
https://www.heise.de/news/Doppelte-Erpressung-moeglich-Cyberkriminelle-im-Clinch-10477705.html #cybersecurity
-
Doppelte Erpressung möglich: Cyberkriminelle im Clinch | heise online https://www.heise.de/news/Doppelte-Erpressung-moeglich-Cyberkriminelle-im-Clinch-10477705.html #CyberCrime #Ransomware #Malware #DragonForce #RansomHub
-
Happy Monday everyone and what a way to start it!
I encourage you to read the latest report from The DFIR Report where they document an attack that started with a "password spray attack against an exposed RDP server" and ended in the #RansomHub ransomware strain being deployed in the victim's environment and spread over SMB.
I am going to forgo the brief summary because I truly believe these reports need to be read by you! But a bunch of LOLBINs were leveraged, including PowerShell and Windows Command Shell, of course RDP connections, MimiKatz, the Advanced IP Scanner, and many more! One behavior I will point out is that Persistence was gained by the actors deploying the legitimate RMM tools AteraAgent and Splashtop and then created services to run them!
This is another great example of an extremely thorough report and I hope you enjoy it as much as I do! Enjoy and Happy Hunting!
Hide Your RDP: Password Spray Leads to RansomHub Deployment
https://thedfirreport.com/2025/06/30/hide-your-rdp-password-spray-leads-to-ransomhub-deployment/Intel 471 Cyborg Security, Now Part of Intel 471 #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting #readoftheday
-
Ransomware Gangs Collapse as Qilin Seizes Control
#RansomHub #LockBit #Everest #DragonForce #QilinGroup
https://www.cybereason.com/blog/threat-alert-qilin-seizes-control -
DragonForce targets rivals in a play for dominance – Source: news.sophos.com https://ciso2ciso.com/dragonforce-targets-rivals-in-a-play-for-dominance-source-news-sophos-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #ScatteredSpider #scatteredspider #ThreatResearch #nakedsecurity #nakedsecurity #DragonForce #goldharvest #dragonforce #Cybercrime #ransomware #RansomHub #FEATURED #featured #ctu
-
RansomHub, a ransomware-as-a-service (RaaS) operation, ranks as one of the most prolific cybercriminal groups investigated by Group-IB this year.
#RansomHub #ransomware #cybercrime #cybersecurity
https://cnews.link/cybercriminal-group-face-stealing-malware-1/
-
Qilin Becomes Top Ransomware Group Amid RansomHub Uncertainty https://thecyberexpress.com/qilin-becomes-top-ransomware-group/ #DragonForceransomware #TheCyberExpressNews #cybersecuritynews #ransomwareattack #Qilinransomware #TheCyberExpress #FirewallDaily #cybersecurity #CyberThreats #Ransomware #CyberNews #RansomHub
-
IP cluster linking ransomware activity and Eye Pyramid C2
#EyePyramid #RansomHub #Rhysida #ViceSociety
https://www.intrinsec.com/wp-content/uploads/2025/04/TLP-CLEAR-IP-cluster-linking-ransomware-activity-and-Eye-Pyramid-C2-EN.pdf -
RansomHub Refines Extortion Strategy as RaaS Market Fractures – Source: www.infosecurity-magazine.com https://ciso2ciso.com/ransomhub-refines-extortion-strategy-as-raas-market-fractures-source-www-infosecurity-magazine-com/ #rssfeedpostgeneratorecho #InfoSecurityMagazine #InfosecurityMagazine #CyberSecurityNews #RansomHub
-
RansomHub Went Dark April 1; Affiliates Fled to Qilin, DragonForce Claimed Control – Source:thehackernews.com https://ciso2ciso.com/ransomhub-went-dark-april-1-affiliates-fled-to-qilin-dragonforce-claimed-control-sourcethehackernews-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #TheHackerNews #RansomHub
-
Shifting the sands of RansomHub’s EDRKillShifter
#EDRKillShifter #MedusaRansomware #PLAY #BianLian #RansomHub
https://www.welivesecurity.com/en/eset-research/shifting-sands-ransomhub-edrkillshifter/ -
Veckans poddavsnitt går igenom utpressningen av Sportadmin från start till slut. Intrånget ledde till Sveriges största utpressningsrelaterade dataläcka. https://www.youtube.com/watch?v=wO9pXg-Ih9g
-
DragonForce Claims to Be Taking Over RansomHub Ransomware Infrastructure https://thecyberexpress.com/dragonforce-claims-to-be-taking-over-ransomhub/ #DragonForceransomware #TheCyberExpressNews #TheCyberExpress #FirewallDaily #Ransomware #CyberNews #RansomHub
-
New post from #Ransomhub : Europtec.Com
More at : https://www.ransomlook.io/group/Ransomhub #Ransomware -
New post from #Ransomhub : Delta-Life.Com
More at : https://www.ransomlook.io/group/Ransomhub #Ransomware -
New post from #Ransomhub : Intellioan.Com
More at : https://www.ransomlook.io/group/Ransomhub #Ransomware -
New post from #Ransomhub : Jackpotjunction.Com
More at : https://www.ransomlook.io/group/Ransomhub #Ransomware -
New post from #Ransomhub : Www.Assisi.Nl
More at : https://www.ransomlook.io/group/Ransomhub #Ransomware -
New post from #Ransomhub : Phaus.Us&Phakr.Com&Phabodysystems.Com
More at : https://www.ransomlook.io/group/Ransomhub #Ransomware -
New post from #Ransomhub : Www.Bassi.It
More at : https://www.ransomlook.io/group/Ransomhub #Ransomware -
New post from #Ransomhub : Www.Allmilmoe.Com
More at : https://www.ransomlook.io/group/Ransomhub #Ransomware -
New post from #Ransomhub : Brattenelectrictn.Com
More at : https://www.ransomlook.io/group/Ransomhub #Ransomware -
New post from #Ransomhub : Www.Hongthongrice.Com
More at : https://www.ransomlook.io/group/Ransomhub #Ransomware -
New post from #Ransomhub : Www.Fkm-Elemente.De
More at : https://www.ransomlook.io/group/Ransomhub #Ransomware -
Ransomware Attacks Set Records in February: Cyble https://thecyberexpress.com/record-ransomware-attacks/ #TheCyberExpressNews #ransomwareattacks #AkiraRansomware #ContiRansomware #TheCyberExpress #RansomwareNews #cl0pransomware #PlayRansomware #FirewallDaily #Fogransomware #Ransomware #CyberNews #RansomHub #LockBit
-
Ransomware Attacks Set Records in February: Cyble https://thecyberexpress.com/record-ransomware-attacks/ #TheCyberExpressNews #ransomwareattacks #AkiraRansomware #ContiRansomware #TheCyberExpress #RansomwareNews #cl0pransomware #PlayRansomware #FirewallDaily #Fogransomware #Ransomware #CyberNews #RansomHub #LockBit
-
Ransomware Attacks Set Records in February: Cyble https://thecyberexpress.com/record-ransomware-attacks/ #TheCyberExpressNews #ransomwareattacks #AkiraRansomware #ContiRansomware #TheCyberExpress #RansomwareNews #cl0pransomware #PlayRansomware #FirewallDaily #Fogransomware #Ransomware #CyberNews #RansomHub #LockBit
-
Ransomware Attacks Set Records in February: Cyble https://thecyberexpress.com/record-ransomware-attacks/ #TheCyberExpressNews #ransomwareattacks #AkiraRansomware #ContiRansomware #TheCyberExpress #RansomwareNews #cl0pransomware #PlayRansomware #FirewallDaily #Fogransomware #Ransomware #CyberNews #RansomHub #LockBit
-
RansomHub: The New King of Ransomware? Targeted 600 Firms in 2024 – Source:hackread.com https://ciso2ciso.com/ransomhub-the-new-king-of-ransomware-targeted-600-firms-in-2024-sourcehackread-com/ #1CyberSecurityNewsPost #CyberSecurityNews #cybersecurity #CyberAttacks #CyberAttack #CyberCrime #Ransomware #RansomHub #Hackread #LockBit #ALPHV
-
RansomHub: The New King of Ransomware? Targeted 600 Firms in 2024 https://hackread.com/ransomhub-king-of-ransomware-600-firms-2024/ #Cybersecurity #CyberAttacks #CyberAttack #CyberCrime #Ransomware #RansomHub #LockBit #ALPHV
-
HCF Management healthcare facilities hit by ransomware attack; more than 70,000 patients affected:
#ransomware #databreach #healthsec #businessassociate #disclosure #transparency #notification #RansomHub
-
Change Healthcare Breach Hits 100M Americans – Source: krebsonsecurity.com https://ciso2ciso.com/change-healthcare-breach-hits-100m-americans-source-krebsonsecurity-com/ #USDepartmentofHealthandHumanResources #rssfeedpostgeneratorecho #CyberSecurityNews #UnitedHealthGroup #KrebsonSecurity #KrebsOnSecurity #LatestWarnings #TheComingStorm #SenMarkWarner #DataBreaches #HIPAAJournal #SenRonWyden #AnthemInc. #TransUnion #RansomHub #BlackCat #Experian #Equifax #alphv #IDX
-
Change Healthcare Breach Hits 100M Americans – Source: krebsonsecurity.com https://ciso2ciso.com/change-healthcare-breach-hits-100m-americans-source-krebsonsecurity-com/ #USDepartmentofHealthandHumanResources #rssfeedpostgeneratorecho #CyberSecurityNews #UnitedHealthGroup #KrebsonSecurity #KrebsOnSecurity #LatestWarnings #TheComingStorm #SenMarkWarner #DataBreaches #HIPAAJournal #SenRonWyden #AnthemInc. #TransUnion #RansomHub #BlackCat #Experian #Equifax #alphv #IDX
-
Change Healthcare Breach Hits 100M Americans – Source: krebsonsecurity.com https://ciso2ciso.com/change-healthcare-breach-hits-100m-americans-source-krebsonsecurity-com/ #USDepartmentofHealthandHumanResources #rssfeedpostgeneratorecho #CyberSecurityNews #UnitedHealthGroup #KrebsonSecurity #KrebsOnSecurity #LatestWarnings #TheComingStorm #SenMarkWarner #DataBreaches #HIPAAJournal #SenRonWyden #AnthemInc. #TransUnion #RansomHub #BlackCat #Experian #Equifax #alphv #IDX
-
Change Healthcare Breach Hits 100M Americans
https://krebsonsecurity.com/2024/10/change-healthcare-breach-hits-100m-americans/
#U.S.DepartmentofHealthandHumanResources #UnitedHealthGroup #LatestWarnings #TheComingStorm #Sen.MarkWarner #DataBreaches #HIPAAJournal #Sen.RonWyden #AnthemInc. #TransUnion #RansomHub #BlackCat #Experian #Equifax #ALPHV #IDX
-
Change Healthcare Breach Hits 100M Americans https://krebsonsecurity.com/2024/10/change-healthcare-breach-hits-100m-americans/ #USDepartmentofHealthandHumanResources #UnitedHealthGroup #LatestWarnings #TheComingStorm #SenMarkWarner #DataBreaches #HIPAAJournal #SenRonWyden #TransUnion #AnthemInc #RansomHub #BlackCat #Experian #Equifax #ALPHV #IDX
-
Change Healthcare Breach Hits 100M Americans https://krebsonsecurity.com/2024/10/change-healthcare-breach-hits-100m-americans/ #USDepartmentofHealthandHumanResources #UnitedHealthGroup #LatestWarnings #TheComingStorm #SenMarkWarner #DataBreaches #HIPAAJournal #SenRonWyden #TransUnion #AnthemInc #RansomHub #BlackCat #Experian #Equifax #ALPHV #IDX
-
Change Healthcare Breach Hits 100M Americans https://krebsonsecurity.com/2024/10/change-healthcare-breach-hits-100m-americans/ #USDepartmentofHealthandHumanResources #UnitedHealthGroup #LatestWarnings #TheComingStorm #SenMarkWarner #DataBreaches #HIPAAJournal #SenRonWyden #TransUnion #AnthemInc #RansomHub #BlackCat #Experian #Equifax #ALPHV #IDX
-
Big Pharmacy Reportedly Targeted By RansomHub Hacker Group #bigpharmacy #databreach #databreaches #ransomhub
https://www.lowyat.net/2024/335485/big-pharmacy-ransomhub-data-breach/
-
Halliburton Confirms Data Stolen in Cyberattack https://www.securityweek.com/halliburton-data-theft/ #Halliburton #Ransomware #databreach #RansomHub #CISA
-
Halliburton Confirms Data Stolen in Cyberattack https://www.securityweek.com/halliburton-data-theft/ #Halliburton #Ransomware #databreach #RansomHub #CISA
-
FBI Warns of RansomHub: Over 200 Victims Targeted https://thecyberexpress.com/fbi-warns-of-ransomhub/ #FederalBureauofInvestigation #DoubleExtortionTactics #TheCyberExpressNews #CybersecurityNews #TheCyberExpress #RansomwareNews #FirewallDaily #FBIAdvisory #RansomHub #CISA