Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
Description: The threat actor known as Sticky Werewolf has been linked to targeted attacks primarily in Russia and Belarus with the aim of delivering the Lumma Stealer malware by means of a previously undocumented implant.
Cybersecurity company Kaspersky is tracking the activity under the name Angry Likho, which it said bears a "strong resemblance" to Awaken Likho (aka Core Werewolf, GamaCopy, and
February 28th, 2025 (about 2 months ago)
|
|
|
February 27th, 2025 (about 2 months ago)
|
|
|
Description: The threat actor known as Space Pirates has been linked to a malicious campaign targeting Russian information technology (IT) organizations with a previously undocumented malware called LuckyStrike Agent.
The activity was detected in November 2024 by Solar, the cybersecurity arm of Russian state-owned telecom company Rostelecom. It's tracking the activity under the name Erudite Mogwai.
The
February 27th, 2025 (about 2 months ago)
|
|
|
Description: A court document reviewed by 404 Media says Cameron John Wagenius also searched for “U.S. military personnel defecting to Russia.”
February 27th, 2025 (about 2 months ago)
|
|
|
Description: More than a year's worth of internal chat logs from a ransomware gang known as Black Basta have been published online in a leak that provides unprecedented visibility into their tactics and internal conflicts among its members.
The Russian-language chats on the Matrix messaging platform between September 18, 2023, and September 28, 2024, were initially leaked on February 11, 2025, by an
February 26th, 2025 (about 2 months ago)
|
|
|
Description: This move comes less than a year after the United States banned Kaspersky products, out of the same fear that the company is under Russian government control.
February 24th, 2025 (about 2 months ago)
|
|
|
Description: Russia's National Coordination Center for Computer Incidents (NKTsKI) is warning organizations in the country's credit and financial sector about a breach at LANIT, a major Russian IT service and software provider. [...]
February 24th, 2025 (about 2 months ago)
|
|
|
Description: Australia has become the latest country to ban the installation of security software from Russian company Kaspersky, citing national security concerns.
"After considering threat and risk analysis, I have determined that the use of Kaspersky Lab, Inc. products and web services by Australian Government entities poses an unacceptable security risk to Australian Government, networks and data,
February 24th, 2025 (about 2 months ago)
|
|
|
Description: A major leak of internal chat logs from the Black Basta ransomware gang has exposed deep internal conflicts, failed operations, and financial disputes. The leak, which surfaced on February 11, 2025, has been linked to the gang's controversial targeting of Russian banks, reminiscent of the infamous Conti ransomware leaks in 2022. Black Basta, a Ransomware-as-a-Service …
The post Black Basta Ransomware Chats Leaked Exposing Internal Chaos appeared first on CyberInsider.
February 21st, 2025 (about 2 months ago)
|
|
|
Description: These sorts of attacks reveal growing adversary interest in secure messaging apps used by high-value targets for communication, Google says.
February 19th, 2025 (about 2 months ago)
|