Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Ransomware

20 articles

BleepingComputer Ransomware Fortinet Jul 1

FortiBleed credential-theft campaign linked to Lynx ransomware

The massive FortiBleed credential theft campaign has been linked to the INC and Lynx ransomware operations, suggesting the stolen Fortinet credentials were i...

T1078

BleepingComputer →

HackRead Ransomware Jul 1

Ransomware-Proof Backup: 7 Strategies for Enterprise IT Teams

Ransomware-proof backup planning helps IT teams protect clean data copies, isolate storage, test recovery, and keep operations running after cyber attacks fast.

HackRead →

HackRead Ransomware Jul 1

Fake Interpol Investigation Emails Push Ransomware at Small Businesses Globally

Fake Interpol investigation emails are targeting small businesses with Proton Drive links that deliver ransomware, encrypt files, and route victims to Tox chat.

HackRead →

The Hacker News Ransomware Microsoft Google Jul 1

AI-Generated Browser Ransomware Abuses Chromium API on Windows and Android

Cybersecurity researchers have flagged a new malware artifact generated using DeepSeek that constructed a novel attack path combining "unrealistic browser-ma...

The Hacker News →

Security Affairs Ransomware Microsoft Jul 1

CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks

CISA confirms BlueHammer (CVE-2026-33825) is now used in ransomware attacks to gain SYSTEM privileges through Microsoft Defender. BlueHammer, tracked as CVE-...

1 IOC

Security Affairs →

Check Point Research Ransomware Check Point Jul 1

Browser-Only Ransomware: From LLM Hallucinations to a Practical Attack Technique

Research by: Alexey Bukhteyev Key Takeaways Introduction Over the past several years, large language models have reshaped software development, and malware d...

Check Point Research →

GBHackers Ransomware Microsoft Linux Jul 1

Hackers Use Vulnerable Windows Drivers to Kill EDR in Ransomware Attacks

Hackers increasingly rely on vulnerable, legitimately signed Windows drivers to neutralize endpoint defenses, turning defense evasion into a decisive phase o...

T1588

GBHackers →

Security Affairs Ransomware Jun 30

XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t

Police arrested the alleged admin of XSS.is, a major cybercrime forum whose trusted escrow service helped power the underground economy.

Security Affairs →

GBHackers Ransomware Jun 30

BumbleBee and AdaptixC2 Deliver Akira Ransomware Through Bing SEO Poisoning

BumbleBee and AdaptixC2 are being used in a highly efficient intrusion chain that starts with Bing SEO poisoning and ends with Akira ransomware deployment, s...

GBHackers →

GBHackers Ransomware Microsoft Jun 30

SystemBC Malware Turns Windows Machines Into SOCKS5 Proxies for Ransomware Attacks

SystemBC (also tracked as Coroxy) remains a versatile and persistent Windows malware family that operators routinely deploy to convert compromised hosts into...

T1588

GBHackers →

BleepingComputer Ransomware Jun 30

Blackfield ransomware asks Nidec Corporation for $2 million ransom

The Blackfield ransomware gang is asking for a $2 million ransom from Nidec Corporation, a large Japanese manufacturer of electronic components for automotiv...

BleepingComputer →

Cyberscoop Ransomware Jun 30

How ransomware syndicates weaponize corporate-style organization

From outsourced labor to tiered pricing models, an inside look at how today's top ransomware threats operate less like rogue hackers and more like Fortune 50...

Cyberscoop →

Infosecurity Magazine Ransomware Jun 30

Over 300 UK Firms Hit by Ransomware in a Year

Report Fraud data reveals that more than half of 323 UK ransomware victims last year were SMEs

Infosecurity Magazine →

Kaspersky Securelist Ransomware Jun 29

The Gentlemen are knocking: сustom backdoors and evolving tactics

Kaspersky researchers analyze incidents related to The Gentlemen RaaS group, disclose their tools and TTPs, and find a new ransomware variant.

T1588

Kaspersky Securelist →

HackRead Ransomware Jun 26

Woodgnat Hackers Use Mistic RAT to Broker Access for Ransomware Gangs

Woodgnat Hackers use Backdoor.Mistic, a stealthy RAT, to let brokers compromise networks and sell entry points to ransomware groups, putting firms at risk.

HackRead →

CSO Online Ransomware Jun 26

What CISOs need to tell the board about zero trust in OT: A 90-day communication and action plan

I work as a principal specialist at a pipeline operator where Operational Technology (OT) is the backbone of the business. I do not report to the board or ac...

T1598

CSO Online →

Help Net Security Ransomware Jun 26

Ransomware gangs find Europe’s weakest link in third-party suppliers

Ransomware attacks against European organizations increased during the first months of 2026, with third-party suppliers becoming a major entry point for atta...

T1598

Help Net Security →

SC Media Ransomware Google Jun 25

New 'Edgecution' malware uses browser extension to deploy ransomware

The Edgecution malware exploits the Chrome Native Messaging protocol to enable communication between browser extensions and native desktop applications.

SC Media →

Security Affairs Ransomware Broadcom Jun 25

Inside Mistic, the New Stealth Backdoor in Ransomware Intrusions

Mistic is a stealthy backdoor used by KongTuke-linked actors to keep long-term access in ransomware-targeted networks. Mistic is the kind of backdoor that te...

Security Affairs →

Help Net Security Ransomware Broadcom Jun 25

Stealthy new backdoor surfaces in attacks on multiple sectors

A relatively new backdoor called Mistic has been deployed in multiple attacks since April 2026 targeting organizations in the insurance, education, IT, and p...

Help Net Security →

«Previous page 1 2 3 4 5 6 ... 15 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA