VanHelsingRaaS, a new ransomware-as-a-service (RaaS) affiliate program, was launched on March 7, 2025, and has quickly gained traction in the cybercrime community. With its rapidly evolving malware infrastructure, the RaaS is already causing significant damage. The Big Picture Affiliates can join VanHelsingRaaS with a deposit of $5,000, while experienced affiliates may join for free. Once … Continued
There has been a rise in the use of sponsored ads on platforms like Google and Instagram for malicious purposes, such as phishing attempts or spread malware. Now, this scheme has extended to target Semrush users, a widely used SEO and market research platform. With Semrush serving over 40% of Fortune 500companies and 117,000 paying … Continued
Dragon RaaS is a Russian Ransomware group that actively participates in hacktivism and cybercrime. It gained significant attention in July of last year when it became part of a larger cybercrime syndicate known as “The Five Families,” which includes ThreatSec, GhostSec, Blackforums, and SiegedSec. The group officially launched its operations in October 2024, announcing its … Continued
After infamous NSO group’s fiasco, another Israeli spyware provider has come under public scrutiny for supplying spyware to major Western governments. Researchers have now mapped out the global infrastructure of this new spyware in a report published on Wednesday. Background Founded in Israel in 2019 by former Prime Minister Ehud Barak and ex-Unit … Continued
A sophisticated new malware strain called “Arcane” is targeting gamers through YouTube videos and steal wide range of sensitive data from VPN, gaming clients, and network utilities like ngrok, Playit, Cyberduck, FileZilla and DynDNS. How Arcane Stealer Works Arcane Stealer Distribution(Source:Securelist) The initial attack begins with YouTube videos … Continued
Ukrainian cybersecurity officials have identified a new malware campaign specifically targeting the country’s defense infrastructure, according to an alert from the Computer Emergency Response Team of Ukraine (CERT-UA). This development comes amid controversy about Signal’s cooperation with Ukrainian authorities. According to The Record, Signal allegedly stopped responding to requests from Ukrainian law enforcement regarding Russian … Continued
Security experts have identified that malicious actors are currently taking advantage of a security weakness in ChatGPT, enabling them to insert harmful URL redirects within the AI chatbot’s interface. In just one week, over 10,000 exploitation attempts were traced back to a single malicious IP addresses What is it Security analysts uncovered this vulnerability within … Continued
A large-scale phishing campaign has recently targeted GitHub users, affecting more than 12,000 repositories. The attackers lured developers into authorizing a malicious OAuth app by sending fake “Security Alert” issues. The phishing alert appeared to be a legitimate security warning: “Security Alert: Unusual Access Attempt – We have detected a login attempt on your GitHub … Continued
For the last few months, RansomHub a cybercriminal group has partnered with FakeUpdates a malware-as-a-service (MaaS) to deliver ransomware against US government organizations. The threat actor behind FakeUpdates is “SocGholish”. Who is RansomHub RansomHub first came to public attention in February 2024, operating as a Ransomware-as-a-Service (RaaS) group.The group offers a higher level of autonomy … Continued
Microsoft Incident Response researchers have discovered a powerful new remote access trojan (RAT) called StilachiRAT with sophisticated capabilities for credential theft and cryptocurrency wallet. Technical Capabilities System reconnaissance: Executes WMI queries via WQL to gather system information and hardware identifiers, creating a unique device fingerprint derived from system serial numbers and attacker RSA keys. Cryptocurrency … Continued
