New phishing campaign uses Discord for payload delivery A new phishing campaign uses two Discord CDN's to host malicious executables. 3 minutes
Rhysida using Oyster Backdoor to deliver ransomware In a recent attack, Rhysida used a new variant of the Oyster backdoor, also known as Broomstick. 3 minutes
Biggest trial court in the US closed after ransomware attack The Los Angeles County Superior Court remained closed on Monday as it tried to recover from a ransomware attack. 1 minute
Ransomware review: July 2024 In June, LockBit said it breached the Federal Reserve and Black Basta was seen exploiting a Windows zero-day. 3 minutes
Credential Dumping: How ransomware gangs steal login data and how to detect it Get the ins and outs of Credential Dumping. 5 minutes
How the world’s worst ransomware gang avoids detection Look at a real example of how LockBit used LOTL techniques on a ThreatDown MDR client. 4 minutes
South Africa’s NHLS is recovering from a ransomware attack quickly, it just doesn’t feel that way It's estimated that the NHLS handles diagnostic tests for about 80% of South Africa's population. Ransomware groups don't care. 2 minutes
Alabama State Department of Education stops ransomware attack but the assault on US education continues More than 60% of global ransomware attacks on education happen in the USA. 2 minutes
Ransomware increases hospital deaths significantly New research shows that you don't want to be in a hospital when ransomware strikes. 1 minute
Upgrade now! New MOVEit Transfer vulnerability under active exploitation A new vulnerability in MOVEit Transfer is already under active exploitation, just a day after a patch was released. 2 minutes