Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Ransomware

20 articles

Help Net Security Ransomware Broadcom Jun 25

Stealthy new backdoor surfaces in attacks on multiple sectors

A relatively new backdoor called Mistic has been deployed in multiple attacks since April 2026 targeting organizations in the insurance, education, IT, and p...

Help Net Security →

Infosecurity Magazine Ransomware Jun 25

Major Increase in Ransomware Attacks Targeting Europe, Warns New Report

Analysis of ransomware incidents by researchers at Black Kite found that attacks have risen by over 50% in the last year, with supply chain attacks increasing

T1195

Infosecurity Magazine →

GBHackers Ransomware Jun 25

Europol Disrupts Cybercrime-as-a-Service Networks Used for Ransomware and Financial Fraud

Europol, in collaboration with global law enforcement agencies and private sector partners, has successfully disrupted a significant cybercrime-as-a-service ...

GBHackers →

Recorded Future Ransomware Jun 25

Evaluating Mexico’s New Cybersecurity Plan

Explore an analysis of Mexico’s 2025–2030 National Cybersecurity Plan.

Recorded Future →

CSO Online Ransomware Broadcom Jun 24

Be on the lookout for Mistic, a new backdoor used by ransomware broker

Researchers have identified a new backdoor program that has been used in enterprise intrusions since April and appears to be linked to an initial access brok...

CSO Online →

BleepingComputer Ransomware Microsoft Jun 24

Malicious Edge extension abuses Native Messaging as bridge to malware

A malicious Microsoft Edge extension dubbed 'Edgecution' has been used in a ransomware attack to escape the browser sandbox and deploy a Python-based backdoo...

BleepingComputer →

Security Affairs Ransomware Microsoft IBM Proofpoint Jun 24

Europol Disrupts StealC and Amadey Malware Infrastructure in Operation Endgame

Operation Endgame disrupted malware services like StealC and Amadey that enable ransomware, fraud, and attacks on critical infrastructure.

Security Affairs →

The Hacker News Ransomware Microsoft Jun 24

Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered

A coordinated law enforcement operation, in partnership with private sector companies, including Bitdefender, Bitsight, ESET, and Microsoft, has resulted in ...

T1078

The Hacker News →

Help Net Security Ransomware Microsoft Proofpoint Jun 24

Law enforcement hits StealC and Amadey malware networks

Operation Endgame, the largest international law enforcement operation aimed at disrupting ransomware and cybercrime infrastructure across the world, has cla...

Help Net Security →

BleepingComputer Ransomware Microsoft Jun 24

Amadey, StealC malware operations disrupted in Operation Endgame action

Microsoft, Europol, and international partners have disrupted infrastructure used by the Amadey and StealC malware operations as part of Operation Endgame, w...

BleepingComputer →

The Record Ransomware Jun 24

Indian auto giant Bajaj Auto hit by ransomware incident

The company said in a regulatory filing that it became aware of the incident on Tuesday morning and had taken precautionary measures to contain its impact.

T1598

The Record →

GBHackers Ransomware Zscaler Jun 24

ModeloRAT and Mistic Backdoor Activity Linked to Ransomware Initial Access Broker

The Python-based remote access trojan ModeloRAT and a newly observed stealth backdoor, dubbed Backdoor.Mistic, to activity consistent with an initial access ...

GBHackers →

Infosecurity Magazine Ransomware Jun 24

Iran-Linked MuddyWater Poses as Ransomware Gang to Mask Cyber Espionage

An NCC Group report warns state-backed hackers are attempting to hide activity by posing as ransomware groups and deploying commercially available malware

Infosecurity Magazine →

SecurityWeek Ransomware Jun 24

New ‘Mistic’ RAT Opens Door to Several Ransomware Families

Mistic is used by Woodgnat, an initial access broker working with Qilin, Interlock, Rhysida, Akira, 8Base, and Black Basta. The post New ‘Mistic’ RAT Opens D...

SecurityWeek →

GBHackers Ransomware Microsoft Google Jun 24

Payouts King Initial Access Broker Deploys Edgecution Malware Through Malicious Edge Extension

A concerted campaign by an initial access broker with ties to the Payouts King ransomware ecosystem that leverages a novel browser-based delivery technique t...

GBHackers →

BleepingComputer Ransomware Jun 24

Stealthy Mistic backdoor linked to ransomware access broker KongTuke

A new backdoor dubbed Mistic has been observed in financially motivated attacks targeting organizations in the insurance, education, IT, and professional ser...

BleepingComputer →

GBHackers Ransomware Jun 24

Bajaj Auto Discloses Ransomware Cyberattack Impacting Company and Technology Unit

Bajaj Auto has reported a ransomware attack that affected its internal systems and those of its wholly owned subsidiary, Bajaj Auto Technology Ltd (BATL). Th...

GBHackers →

CSO Online Ransomware Microsoft Jun 23

Unpatched SharePoint servers opened the door to multiple attackers, Microsoft finds

What began as a routine ransomware investigation uncovered two unrelated attackers operating inside the same victim network at the same time, each obscuring ...

CSO Online →

GBHackers Ransomware Microsoft Jun 23

Microsoft Uncovers Parallel Threat Activity From Two Cyberattackers in Single Intrusion

Microsoft’s latest incident write-up shows that a single intrusion can mask two parallel threat activity streams, one tied to Storm-2603 and another to an un...

GBHackers →

Microsoft Security Blog Ransomware Microsoft Jun 22

One intrusion, two cyberattackers: Uncovering parallel threat activity

Ransomware case reveals two parallel threat actors, blending tactics and evasion—showing why isolated signals can often miss modern, overlapping cyberattacks...

Microsoft Security Blog →

«Previous page 1 ... 3 4 5 6 7 ... 15 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA