March 2025
UAC-0006 - Financially Motivated Threat Actor Leveraging System Binaries
25 March 2025
Dark Caracal – Weaponizing Poco RAT and Bandook for Covert Operations
18 March 2025
FatalRAT - Leveraging Chinese Cloud Services to Target APAC Industries
11 March 2025
February 2025
XWorm Malware: Leveraging Xlogger for Enhanced Keylogging
25 February 2025
January 2025
December 2024
DragonRank Group - Disrupting IIS Servers and SEO Integrity
23 December 2024
Medusa Ransomware – Global Cyber Threat Exploiting Vulnerabilities
17 December 2024
BianLian Ransomware: Shifting Tactics from Encryption to Data Extortion
03 December 2024
November 2024
RansomHub Ransomware: The RaaS Powerhouse Wreaking Havoc
26 November 2024
Evasive Panda - Unmasking China’s Geopolitical Cyber Spy
12 November 2024
October 2024
Kryptina Ransomware – Resurfaces with Mallox Variant Targeting Enterprises
22 October 2024
September 2024
Cyber Threat Intelligence Advisory
KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
Cyber Threat Intelligence Advisory
KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
Cyber Threat Intelligence Advisory
KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
Cyber Threat Intelligence Advisory
KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
August 2024
Cyber Threat Intelligence Advisory
KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
Cyber Threat Intelligence Advisory
KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
Cyber Threat Intelligence Advisory
KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
Cyber Threat Intelligence Advisory
KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
Cyber Threat Intelligence Advisory
KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
July 2024
DISGOMOJI - Evolving Techniques of Emoji Malware
CrowdStrike Global Windows Outage : An Update on the State of Affairs
CrowdStrike Causing Global Windows Outage
ChamelGang – The Shape-Shifting Cyber Menace
Void Arachne - Infiltrating Chinese Users with Winos 4.0
Sticky Werewolf – Expanding threats in the Aviation Sector
June 2024
ValleyRAT - Returns with Enhanced Capabilities
Grandoreiro Trojan – Unveiling the Banking Sector's Nemesis
Chalubo Malware – Exploiting Routers Across the Globe
Unfading Sea Haze – Maneuvers Across the South China Sea
May 2024
Cuttlefish Malware – Exploiting Routers and Sniffing Cloud Credentials
CR4T Malware - Targeting Government Entities in the Middle East
Goldoon Botnet – Exploiting Vulnerabilities in D-Link Devices
TimbreStealer - Mexico’s Cyber Users Under Threat
April 2024
Raspberry Robin – Resurged with Advanced Evasion Tactics
StrelaStealer – Back with Revamped Tactics
CoralRaider - Pilfering Financial Data Across Asia
8220 Gang - Unleashing Crypto Chaos on Windows and Linux
Smokeloader Malware - Targeting Ukrainian Institutions
March 2024
RedCurl - Exploiting Mail Transfer Service and PCA
UNC1549 - Iran's Cyber Intrusion into Aerospace and Defense
Phobos Ransamwore - A Threat to Critical Infrastructure
Water Hydra APT - Infiltrating the Financial Sector
February 2024
APT28 - Unveiling Russia's GRU Cyber Tactics
NS Stealer : Leveraging Discord for Data Exfiltration
Zloader - Targeting Windows Users with Revamped Tactics
Remcos RAT - A Deceptive Remote Access Threat
January 2024
SugarGh0st Malware – Twin Infection Chains Revealed
Pikabot Malware – The Multilayer Trojan Spreading Through Malspam
Alphv/BlackCat – A Formidable Cross Platform Adversary
December 2023
PicassoLoader Malware – Concealed Threats In Image Files
BundleBot Malware - Comes Prepared With Its Own .NET Bundle
Knight Ransomware – Menacing Cross-Platforms Threat
November 2023
Ducktail - Malware That Preys on Business Social Media Accounts
Exela Stealer – Rise of Open-source Info-Stealers
SideCopy APT - Targeting Indian Defense Organizations
Quasar APT – Leveraging DLL Sideloading
October 2023
Gelsemium APT - Deceptive Web Shells Unveiled
ToddyCat - Redefining Modern Espionage
Gold Melody – Exploiting Vulnerabilities in Unpatched Servers
TAG-74 – Strengthening Capabilities with Bisonal Backdoor
Snatch Ransomware - Exploiting Safe Mode for Stealthy Intrusion
September 2023
Rhysida Ransomware - Infecting Healthcare Organizations
Earth Estries : A Cyber Espionage Revelation
Chaes Malware - Siphoning Data through Chrome DevTools
Scarab Ransomware – Unravelling CosmicBeetle’s Cyber Threat
August 2023
Raccoon Stealer Malware V2 - Resurging as a Stealthier Threat
NodeStealer – Targeting your Digital Presence
Akira Ransomware – Wrecking Damage in Retro-Style
Realst Infostealer – New Rust-Based Malware Targeting MacOS
Casbaneiro Malware - An Emerging Banking Trojan
FIN8 – Continues to Evolve its Toolkit
July 2023
New FiveSys Rootkit – A Microsoft-Signed Malicious Kernel Driver
Ursnif - Evolutionary Exploits of a Banking Trojan
CACTUS Ransomware – Concealed Binary Wrecking Havoc
Muddled Libra – Embracing Helpdesk Impersonation
June 2023
Shuckworm - Another Russian APT Targeting Ukraine
Void Rabisu – Blurring Lines between APTs & Cyber Criminals
Asylum Ambuscade – Straddling between Cybercrime and Cyber Espionage
ViperSoftX – Targeting Password Managers & Cryptos
June 2023
Shuckworm - Another Russian APT Targeting Ukraine
Void Rabisu – Blurring Lines between APTs & Cyber Criminals
Asylum Ambuscade – Straddling between Cybercrime and Cyber Espionage
ViperSoftX – Targeting Password Managers & Cryptos
May 2023
Trigona- Emerging New Ransomware
Mango Sandstorm - Rapidly Leveraging Latest Exploits
ViperSoftX – Targeting Password Managers & Cryptos
Cylance - Tale of a New Cross Platform Ransomware
SocGholish – Hiding Behind the Masks
April 2023
QBot – Thriving With New Tactics
Rorschach – New Fastest Ransomware in the Town
Royal Ransomware – Stopping at Nothing
March 2023
YoroTrooper – Motivated by Geo-Political Interests
Amadey – Return of the Malware Distributor
Clop Ransomware – Reckless Data Exfiltration Spree
PureCrypter – Proliferating Multiple Malware Families
hardbit-2.0-01-mar-2023.pdf
February 2023
Vice Society – Low Effort, High Impact Ransomware
Clop Ransomware - Honing its techniques
Titan Stealer – Another Day, Another Stealer
January 2023
BianLian Ransomware – Smart, Fast & Stealthy
Play Ransomware – A New Formidable Threat
GodFather – Massacring the Android Defenses
December 2022
Jester Stealer – Not a Joke
Raspberry Robin – The new popular worm
BlackByte : Learning from its Mistakes
November 2022
Aurora Stealer – Botnet turned MaaS turned Stealer
Daxin Backdoor - Over-engineered for Stealth
RapperBot – Swiftly building upon Mirai
APT 42 – A con artist with phony tricks
October 2022
Magniber - The Single Client Ransomware
Bumblebee – The new buzz among malware loaders
September 2022
Loci Locker - A Painfully Mischievous RaaS
Evilnum - Evolved As Cyber Demon?
Shikitega
Shikitega - Stealthy Sophisticated Malware
Haron Ransomware
August 2022
Raccoon Stealer - Simple Yet Effective
RedLine Stealer - A Cheap and Versatile malware
MedusaLocker Ransomware: In-force and Compact !
July 2022
Karakurt: The Conti Extortion Arm
ToddyCat APT : Both perilous and quiet !!
Bronze Starlight - Ransomware for Intelligence theft
MuddyWater: A Confederation of Thieves
June 2022
LuoYu - A near impossible man on the side Attacker !
Gallium APT
Panchan Botnet – Proliferating through SSH
Follina : Another Troublemaker in Cyber Market!
May 2022
Black Basta : Yet another Rebrand?
Remote Takeover of F5's Big-IP
Bitter APT : An Intelligence Accumulator!
April 2022
NOKOYAWA: Another Stealthy Ransomware!
SunCrypt Ransomware : Maze Re-incarnated
March 2022
Zeoticus 2.0 : an offline payload executer!
Copy no Jutsu : Sidecopy emulates Sidewinder to confuse security community
Cuba Ransomware : Incited by Hanictor
The Lapsus$ Group: Brazen, notorious and chaotic extortionists
February 2022
Lazarus Group - The Most Notorious Group
White Rabbit: FIN8 Group's New Pet ?
Sugar Ransomware - RaaS for common man?
