Alias Description | Votes |
---|---|
Qilin is a possible alias for Ransomhub. Qilin, a threat actor in the cybersecurity landscape, has emerged as a significant player in the ransomware space. The Octo Tempest group recently added Qilin ransomware to its arsenal, enhancing its capabilities and reach. This addition suggests that high-level groups like Qilin may have the capaci | 3 |
Cyclops is a possible alias for Ransomhub. Cyclops, also known as Knight and later rebranded as RansomHub, is a malware that emerged in the threat landscape in May 2023. This malicious software, designed to exploit and damage computer systems, infects systems through suspicious downloads, emails, or websites and can steal personal informatio | 3 |
Octo Tempest is a possible alias for Ransomhub. Octo Tempest, also known as Scattered Spider, is a prominent threat actor in the cybersecurity landscape. This group has rapidly gained notoriety in the ransomware domain by incorporating RansomHub and Qilin ransomware into its arsenal, significantly enhancing its ability to compromise systems and n | 2 |
Alias Description | Association Type | Votes |
---|---|---|
The Lockbit Malware is associated with Ransomhub. LockBit is a type of malware, specifically ransomware, that infiltrates systems to exploit and damage them. It typically enters through suspicious downloads, emails, or websites without the user's knowledge. Once inside, it can steal personal information, disrupt operations, or hold data hostage for | Unspecified | 6 |
Alias Description | Association Type | Votes |
---|---|---|
The Alphv Threat Actor is associated with Ransomhub. AlphV, also known as BlackCat, is a notorious threat actor that has been active since November 2021. This group pioneered the public leaks business model and has been associated with various ransomware families, including Akira, LockBit, Play, and Basta. AlphV gained significant attention for its la | Unspecified | 9 |
The Scattered Spider Threat Actor is associated with Ransomhub. Scattered Spider is a financially motivated threat actor known for its sophisticated techniques and broad range of targets, including all major cloud service providers. This group seeks to maintain persistence on targeted networks, often using phishing to obtain login credentials and gain access. It | Unspecified | 3 |
The Medusa Threat Actor is associated with Ransomhub. Medusa, a prominent threat actor in the cybersecurity landscape, has been increasingly active with its ransomware attacks. The group made headlines in November 2023 when it leveraged a zero-day exploit for the Citrix Bleed vulnerability (CVE-2023-4966), leading to numerous compromises alongside othe | Unspecified | 3 |
Alias Description | Association Type | Votes |
---|---|---|
The Zerologon Vulnerability is associated with Ransomhub. Zerologon, officially known as CVE-2020-1472, is a critical vulnerability within Microsoft's Netlogon Remote Protocol. This flaw allows attackers to bypass authentication mechanisms and alter computer passwords within a domain controller's Active Directory, enabling them to escalate privileges to do | Unspecified | 2 |
The CVE-2020-1472 Vulnerability is associated with Ransomhub. CVE-2020-1472, also known as the "ZeroLogon" vulnerability, is a critical-severity flaw in Microsoft's Netlogon Remote Protocol. This vulnerability, which was patched on August 11, 2020, allows attackers to escalate privileges and gain administrative access to a Windows domain controller without any | Unspecified | 2 |
Preview | Source Link | CreatedAt | Title |
---|---|---|---|
BankInfoSecurity | 4 days ago | ||
InfoSecurity-magazine | 11 days ago | ||
BankInfoSecurity | 11 days ago | ||
BankInfoSecurity | 9 days ago | ||
Checkpoint | 13 days ago | ||
InfoSecurity-magazine | 19 days ago | ||
BankInfoSecurity | a month ago | ||
Securityaffairs | a month ago | ||
Trend Micro | a month ago | ||
Checkpoint | a month ago | ||
Securityaffairs | a month ago | ||
ESET | a month ago | ||
DARKReading | a month ago | ||
BankInfoSecurity | a month ago | ||
DARKReading | 2 months ago | ||
BankInfoSecurity | 2 months ago | ||
ESET | 2 months ago | ||
Recorded Future | 2 months ago | ||
Securityaffairs | 2 months ago | ||
Checkpoint | 2 months ago |