| ID | Votes | Profile Description |
|---|---|---|
| Rhysida | 7 | Rhysida, a threat actor active since May 2023, is responsible for a series of ransomware attacks, with a significant focus on the healthcare sector. It accounts for 8% of total cyberattacks, with 38% of its attacks targeting healthcare institutions. The group's modus operandi includes transferring R |
| Rhysida Ransomware | 6 | Rhysida ransomware is a malicious software that infiltrates systems, often without the knowledge of the user, with the intention to exploit and damage the system. It can infect systems through suspicious downloads, emails, or websites. Once inside, it can steal personal information, disrupt operatio |
| Royal Ransomware | 2 | The Royal Ransomware, a harmful malware program designed to exploit and damage computer systems, operated from September 2022 through June 2023. It employed multi-threaded encryption to disrupt operations and hold data hostage for ransom. The ransomware was primarily disseminated through suspicious |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| Clop | Unspecified | 4 | Clop, also known as Cl0p, is a notorious ransomware group responsible for several high-profile cyberattacks. The group specializes in exploiting vulnerabilities in software and systems to gain unauthorized access, exfiltrate sensitive data, and then extort victims by threatening to release the stole |
| Lockbit | Unspecified | 4 | LockBit is a malicious software, or malware, that has been notably active and damaging in the cyber world. Known for its ability to infiltrate systems often without detection, it can steal personal information, disrupt operations, and even hold data hostage for ransom. In the first half of 2024, Loc |
| REvil | Unspecified | 3 | REvil is a type of malware, specifically ransomware, that has been linked to significant cyber attacks. It emerged as part of the Ransomware as a Service (RaaS) model that gained popularity in 2020. This model established relationships between first-stage malware and subsequent ransomware attacks, s |
| Hive | Unspecified | 3 | Hive is a malicious software (malware) that has been used by the cybercriminal group, Hunters International, to launch ransomware attacks since October of last year. The group operates as a ransomware-as-a-service (RaaS) provider, spreading Hive rapidly through collaborations with less sophisticated |
| Conti | Unspecified | 2 | Conti is a notorious malware and ransomware operation that has caused significant damage to computer systems worldwide. The Conti group, believed to have around 200 employees, operated like a regular business, with internal communications revealing the organization's structure and operations. It was |
| Karakurt | Unspecified | 2 | Karakurt is a malicious software (malware) utilized by cybercriminals for data theft and extortion. It was revealed as the data extortion arm of the Conti cybercrime syndicate, with links to ITG23 affiliates. Karakurt has been associated with numerous attacks, including those carried out by Quantum, |
| Systembc | Unspecified | 2 | SystemBC is a type of malware, or malicious software, that has been heavily utilized in cyber-attacks and data breaches. Throughout 2023, it was frequently used in conjunction with other malware like Quicksand and BlackBasta by cybercriminals to exploit vulnerabilities in computer systems. Play rans |
| Akira | Unspecified | 2 | Akira is a malicious software or malware that has been causing significant damage to various organizations and systems worldwide. The ransomware, known for its persistent and harmful attacks, has successfully infiltrated numerous systems, often without the knowledge of the users, disrupting operatio |
| Snatch | Unspecified | 2 | Snatch is a type of malware, specifically a ransomware, that poses significant threats to digital security. This malicious software infiltrates systems typically via suspicious downloads, emails, or websites, often unbeknownst to the user. Once inside a system, Snatch can cause extensive damage, inc |
| Black Basta | Unspecified | 2 | Black Basta is a notorious malware group known for its ransomware activities. The group has been active since at least early 2022, during which time it has accumulated an estimated $107 million in Bitcoin ransom payments. It leverages malicious software to infiltrate and exploit computer systems, of |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| Alphv | Unspecified | 6 | Alphv is a threat actor group known for its malicious activities in the cyber world. They have been particularly active in deploying ransomware attacks, with one of their most significant actions being the theft of 5TB of data from Morrison Community Hospital. This act not only disrupted hospital op |
| Bianlian | Unspecified | 2 | BianLian is a significant threat actor within the cybersecurity landscape, known for its malicious activities and cyber-attacks. The group has been particularly active in exploiting bugs in JetBrains TeamCity, a popular continuous integration and deployment system used by software development teams. |
| Preview | Source Link | CreatedAt | Title |
|---|---|---|---|
| InfoSecurity-magazine | 3 months ago | UK School Forced to Close Following Cyber-Attack | |
| Malwarebytes | 5 months ago | 2024 State of Malware in Education report: Top 6 cyberthreats facing K-12 and Higher Ed | Malwarebytes | |
| CERT-EU | 6 months ago | Cyberattacks on Higher Ed Rose Dramatically Last Year, Report Shows | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting | |
| CERT-EU | 6 months ago | German applied sciences university announces being hit by criminal cyberattack | |
| CERT-EU | 7 months ago | Rhysida Ransomware Cracked & Decrypted | |
| InfoSecurity-magazine | 7 months ago | Exclusive: eSentire Confirms Rhysida Ransomware Victims | |
| CERT-EU | 7 months ago | Blog | Tripwire | |
| Malwarebytes | 7 months ago | Ransomware in 2023 recap: 5 key takeaways | Malwarebytes | |
| Unit42 | 7 months ago | Ransomware Retrospective 2024: Unit 42 Leak Site Analysis | |
| Malwarebytes | 7 months ago | 2024 State of Ransomware in Education: 92% spike in K-12 attacks | Malwarebytes | |
| CERT-EU | 8 months ago | Top 10 Notorious Ransomware Gangs of 2023 | #ransomware | #cybercrime | National Cyber Security Consulting | |
| Securityaffairs | 8 months ago | Rhysida ransomware group hacked Abdali Hospital in Jordan | |
| CERT-EU | 8 months ago | Rhysida ransomware group hacked Abdali Hospital in Jordan | #ransomware | #cybercrime | National Cyber Security Consulting | |
| Malwarebytes | 9 months ago | Ransomware review: December 2023 | |
| BankInfoSecurity | 9 months ago | Ransomware Groups' Latest Tactic: Weaponized Marketing | |
| CERT-EU | 9 months ago | How ransomware gangs are engaging -- and using -- the media | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting | |
| CERT-EU | 9 months ago | Spider-Man 2 Developer Insomniac Games Hit by Rhysida Ransomware | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting | |
| CERT-EU | a year ago | Ataki typu web shell po raz pierwszy w historii najpopularniejszym cyberzagrożeniem | |
| CERT-EU | 9 months ago | Top 13 Ransomware Targets in 2024 and Beyond | #ransomware | #cybercrime | National Cyber Security Consulting | |
| Securityaffairs | 9 months ago | Rhysida ransomware group hacked King Edward VII’s Hospital |