Mastodawn

CTI.FYI 36m ago

🚨New ransom group blog post!🚨

Group name: qilin
Post title: Cash Canada
Info: https://cti.fyi/groups/qilin.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

CTI.FYI 1h ago

🚨New ransom group blog post!🚨

Group name: nova
Post title: lpgroup.pt
Info: https://cti.fyi/groups/nova.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

CTI.FYI 11h ago

🚨New ransom group blog post!🚨

Group name: incransom
Post title: horizoneye.com
Info: https://cti.fyi/groups/incransom.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

incransom Ransomware Group | CTI.FYI

Track incransom ransomware group activity and threat intelligence.

CTI.FYI

CTI.FYI 12h ago

🚨New ransom group blog post!🚨

Group name: bravox
Post title: Meta 🇧🇷
Info: https://cti.fyi/groups/bravox.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

CTI.FYI 15h ago

🚨New ransom group blog post!🚨

Group name: qilin
Post title: Lee International
Info: https://cti.fyi/groups/qilin.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

CTI.FYI 17h ago

🚨New ransom group blog posts!🚨

Group name: genesis
Post title: ***
Info: https://cti.fyi/groups/genesis.html

Group name: qilin
Post title: Schumacher Homes
Info: https://cti.fyi/groups/qilin.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

CTI.FYI 19h ago

🚨New ransom group blog post!🚨

Group name: nova
Post title: cloudquantum
Info: https://cti.fyi/groups/nova.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

VulDB

21h ago

Added some more indicators for: Remus (+1), ScreenConnect (+1), Nanocore RAT (+3), Sliver (+3), KV (+3), ValleyRAT (+1) and VShell (+7). https://vuldb.com/actor #apt #cti #ioc

Actors

Predictive activity analysis of APT actors in social media, private forums, chat rooms, and darknet markets.

Vulnerability Database

CTI.FYI 21h ago

🚨New ransom group blog post!🚨

Group name: interlock
Post title: Reynella East College
Info: https://cti.fyi/groups/interlock.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

interlock Ransomware Group | CTI.FYI

Track interlock ransomware group activity and threat intelligence.

CTI.FYI

Andrea Draghetti 🎣22h ago

🔍 New analysis: an Italian phishing campaign abusing Chrome Native Messaging to escape browser sandbox restrictions.

Attack chain:

Invoice phishing → obfuscated JS → DLL sideloading → malicious Chrome extension → Native Messaging Host → PowerShell execution.

Legitimate technologies chained together to turn Chrome into a backdoor.

📌 https://www.d3lab.net/breaking-out-of-chromes-sandbox-a-native-messaging-backdoor-observed-in-italy/

#ThreatIntelligence #Chrome #BrowserSecurity #MalwareAnalysis #CTI #CyberSecurity