FLIPSIDE

Malware Profile Updated 24 days ago
Download STIX
Preview STIX
Flipside is a form of malware that has seen a significant increase in distribution and use over recent years, especially with the exponential adoption of APIs in the past decade. The surge in API usage has unfortunately also led to an upswing in API attacks, providing an avenue for this malicious software to infiltrate systems. Cybercriminals are exploiting AI for potential vulnerabilities, necessitating robust API protection strategies. Furthermore, the malware's distribution has spiked after its developer, known as "RastaFarEye" on the dark web, began offering it for lease on a Malware-as-a-Service (MaaS) basis. The impacts of Flipside have been far-reaching, with only about 24% of healthcare organizations able to disrupt a ransomware attack before the attackers encrypted their data, down from 34% in 2022. The complexity of these attacks is further compounded by the fact that actors can employ multiple tools for the same campaign, obscuring the true extent of their activity from purely malware-based analysis. The connections between cybercriminals and states like Russia have created murky situations that complicate the cybersecurity landscape. However, there is a silver lining in this otherwise grim scenario. While AI has given malware-makers a powerful tool, it can also be used to counteract these efforts. Developers can leverage AI, specifically GenAI, to write better, more secure code that could thwart hackers' attempts. Additionally, these unclear connections between state entities and cybercriminals may provide diplomatic opportunities to address and mitigate cyber threats. The U.S. government is also making strides in enhancing domestic tech capabilities, as evidenced by Microchip Technology receiving $162M to boost domestic chip production.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the FLIPSIDE Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
Big biz on Net comes with riders
CERT-EU
5 months ago
Issue 236: Using a developer portal, dark data in APIs, an update on Ray AI framework, predictions for 2024 - API Security News
BankInfoSecurity
7 months ago
Healthcare's Ransomware Attackers Are Addicted to Encryption
Trend Micro
9 months ago
Top 10 AI Security Risks According to OWASP
CERT-EU
7 months ago
Hackers target US Facebook biz accounts with potent malware cocktail
CERT-EU
a year ago
Vietnam Calls for Tech Giants to Use AI to Remove ‘Anti-State’ Content
CERT-EU
7 months ago
Artificial intelligence offers promise – and peril – in cyberthreat landscape: US national security official
CERT-EU
5 months ago
Here comes OpenAI's generative AI app store, and consolidation quickens in cybersecurity | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting
CERT-EU
5 months ago
How ransomware could cripple countries, not just companies | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting
CERT-EU
5 months ago
Navigating The Cybersecurity Landscape In 2024 | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting
CERT-EU
5 months ago
How ransomware could cripple countries, not just companies
CERT-EU
a year ago
Mitigate the potential risks of generative AI with these five tips
CERT-EU
10 months ago
FBI: Without Section 702, we can't ID cyber criminals
CERT-EU
7 months ago
DarkGate attacks linked to Vietnam-based cyber criminals – Global Security Mag Online
CERT-EU
5 months ago
API Predictions for 2024
CERT-EU
7 months ago
In the Era of Code, Generative AI Represents National Security Risks and Opportunities for "Innovation Power"
CERT-EU
9 months ago
WATCH: 'Crazy plane lady' apologizes after viral 'motherf***er is not real' rant aboard flight
CERT-EU
a year ago
MDR uses cases: Speeding up the time from intrusion to detection and response
CERT-EU
7 months ago
Researchers uncover DarkGate malware's Vietnamese connection - Help Net Security
Trend Micro
9 months ago
Top 10 AI Security Risks According to OWASP