New ALPHV-like ransomware targets VMware ESXi servers https://buff.ly/3TkAua2
Security researchers have discovered a ransomware group called Cicada3301 that specializes in targeting ESXi and Windows servers, using techniques and code very similar to ALPHV/BlackCat.
Cicada ransomware may be a BlackCat/ALPHV rebrand • The Register https://buff.ly/4e84vSt
Researchers find many similarities, and nasty new customizations such as embedded compromised user credentials
BlackCat/ALPHV Ransomware Victim: Worthen Industries [You have three days]
Cicada ransomware may be a BlackCat/ALPHV rebrand and upgrade
Researchers find many similarities, and nasty new customizations such as embedded compromised user credentials
Cicada3301 Ransomware Group Emerges From the Ashes of ALPHV
Truesec claims new Cicada3301 ransomware-as-a-service group could have ties to ALPHV/BlackCat and Brutus
Here's also a sneak peak snapshot about #Australia#ALPHV#8base (17 claims)
『Cicada3301がALPHVのリブランドであるか、あるいは元ALPHVメンバーによって作られた分派である可能性を示唆』:Cicada3301ランサムウェアのLinux向け暗号化ツールがVMware ESXiシステムを標的に | Codebook|Security News https://codebook.machinarecord.com/threatreport/34636/
新たなRaaSオペレーション「Cicada3301」に関する分析記事を、Truesecが公開。これによれば、今年6月の始動依頼、同RaaSはすでに世界各地の企業を攻撃し始めており、リークサイトには19の被害組織が掲載されているという。
🚨 According to a CISA and FBI advisory, Iranian hackers are partnering with ransomware gangs like #ALPHV#CyberSecurity#Iran#Ransomware#CyberAttackhackread.com/iranian-stat...
Follow us on Twitter (X) @Hackread - Facebook @ /Hackread
Iranian-sponsored hackers are acting as access brokers for ransomware affiliates like ALPHV, U.S. intelligence agencies warned in a joint alert Wednesday. cyberscoop.com/iran-cisa-fb...
The group's side hustle may not have explicit permission from its Iranian government sponsor.