Lucene search
K

34 matches found

The Hacker News
The Hacker News
added 2026/05/20 2:36 p.m.33 views

Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks

Microsoft on Tuesday said it disrupted a malware-signing-as-a-service MSaaS operation that weaponized the company's Artifact Signing system to deliver malicious code and conduct ransomware and other attacks, compromising thousands of machines and networks across the world. The tech giant attribut...

5.8AI score
Exploits0
Talos Blog
Talos Blog
added 2026/04/02 10:0 a.m.4 views

Qilin EDR killer infection chain

Endpoint detection and response EDR tools are widely deployed and far more capable than traditional antivirus. As a result, attackers use EDR killers to disable or bypass them. Disabling telemetry collection process, memory, network activity limits what defenders can see and analyze. As defenders...

6.3AI score
Exploits0
Talos Blog
Talos Blog
added 2026/04/02 10:0 a.m.7 views

An overview of ransomware threats in Japan in 2025 and early detection insights from Qilin cases

In 2025, a total of 134 ransomware incidents were reported in Japan, marking a 17.5% increase compared to 2024. Among these, 22 incidents were attributed to Qilin, representing 16.4% of the total. In 2025, Qilin ransomware was highly active. Looking ahead to 2026, unless there is significant...

6AI score
Exploits0
Talos Blog
Talos Blog
added 2025/12/18 7:0 p.m.9 views

Adios 2025, you won’t be missed

Welcome to this week's edition of the Threat Source newsletter. For us in America, we're in the holiday doldrums and things slow and/or shut down until the new year. At Cisco, we shut down the last week of the year to reset and recharge, and I've grown to be quite fond of it. I've worked plenty o...

9.8CVSS7.7AI score0.66322EPSS
Exploits1
HackRead
HackRead
added 2025/12/04 10:14 p.m.6 views

Qilin Ransomware Claims Data Theft from Church of Scientology

Qilin ransomware claims it stole internal data from the Church of Scientology, sharing 22 screenshots as proof. The breach remains unconfirmed by the organization...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/11/26 2:31 p.m.11 views

Qilin Ransomware Turns South Korean MSP Breach Into 28-Victim 'Korean Leaks' Data Heist

South Korea's financial sector has been targeted by what has been described as a sophisticated supply chain attack that led to the deployment of Qilin ransomware. "This operation combined the capabilities of a major Ransomware-as-a-Service RaaS group, Qilin, with potential involvement from North...

6.6AI score
Exploits0
The Hacker News
The Hacker News
added 2025/10/27 8:55 a.m.16 views

Qilin Ransomware Combines Linux Payload With BYOVD Exploit in Hybrid Attack

The ransomware group known as Qilin aka Agenda, Gold Feather, and Water Galura has claimed more than 40 victims every month since the start of 2025, barring January, with the number of postings on its data leak site touching a high of 100 cases in June. The development comes as the...

7.3AI score
Exploits0
Talos Blog
Talos Blog
added 2025/10/27 2:0 a.m.41 views

Uncovering Qilin attack methods exposed through multiple cases

In the second half of 2025, the ransomware group Qilin has continued to publish victim information on its leak site at a pace of more than 40 cases per month, making it one of the most impactful ransomware groups worldwide. The manufacturing sector has been the most affected, followed by...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2025/10/08 12:4 p.m.3 views

LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem

Three prominent ransomware groups DragonForce, LockBit, and Qilin have announced a new strategic ransomware alliance, once underscoring continued shifts in the cyber threat landscape. The coalition is seen as an attempt on the part of the financially motivated threat actors to conduct more...

6.7AI score
Exploits0
HackRead
HackRead
added 2025/09/22 3:15 p.m.6 views

Fake Ukrainian Police Emails Spread New CountLoader Malware Loader

A new malware loader, CountLoader, has been discovered by cybersecurity firm Silent Push. This threat is linked to prominent Russian ransomware gangs, including LockBit, BlackBasta, and Qilin, and is being used as an initial access broker...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/09/18 12:56 p.m.5 views

CountLoader Broadens Russian Ransomware Operations With Multi-Version Malware Loader

Cybersecurity researchers have discovered a new malware loader codenamed CountLoader that has been put to use by Russian ransomware gangs to deliver post-exploitation tools like Cobalt Strike and AdaptixC2, and a remote access trojan known as PureHVNC RAT. "CountLoader is being used either as par...

7.4AI score
Exploits0
Securelist
Securelist
added 2025/09/05 9:0 a.m.12 views

IT threat evolution in Q2 2025. Non-mobile statistics

IT threat evolution in Q2 2025. Non-mobile statistics IT threat evolution in Q2 2025. Mobile statistics The statistics in this report are based on detection verdicts returned by Kaspersky products unless otherwise stated. The information was provided by Kaspersky users who consented to sharing...

10CVSS9.6AI score0.99359EPSS
Exploits45
HackRead
HackRead
added 2025/08/21 6:28 p.m.8 views

Qilin Ransomware Gang Claims 4TB Data Breach at Nissan CBI

Qilin ransomware claims a 4TB data breach at Nissan CBI, leaking car design files, financial data, 3D models,…...

7.3AI score
Exploits0
HackRead
HackRead
added 2025/08/21 5:30 p.m.8 views

Europol Denies $50K Reward for Qilin Ransomware, Calls It a Scam

Europol has confirmed that a widely reported $50,000 reward for information on the Qilin ransomware group is a…...

7.1AI score
Exploits0
Talos Blog
Talos Blog
added 2025/08/19 10:0 a.m.11 views

Ransomware incidents in Japan during the first half of 2025

In the first half of 2025, the number of ransomware attacks in Japan increased by approximately 1.4 times compared to the previous year. Ransomware attackers continue to primarily target small and medium-sized enterprises in Japan. The most affected industry remains manufacturing, unchanged from...

7.9AI score
Exploits0
Trellix
Trellix
added 2025/08/19 12:0 a.m.13 views

Dark Web Roast - July 2025 Edition

Dark Web Roast - July 2025 Edition By Trellix Advanced Research Center · August 19, 2025 Executive Summary July 2025 delivered a masterclass in cybercriminal mediocrity that would make even the most charitable threat intelligence analyst weep into their coffee. After extensive hunts across the da...

6.8AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2025/07/22 8:33 p.m.7 views

Q2 2025 Ransomware Trends Analysis: Boom and Bust

“Tumultous times” would be an accurate summary of Q2 2025 where ransomware threat actors are concerned. Rapid7’s internal and publicly-available data analysis reveals a dynamic environment where major players come and go, newer groups work their way up the heavy-hitters ladder, and threat actors...

6.8AI score
Exploits0
HackRead
HackRead
added 2025/06/28 12:0 p.m.6 views

Qilin Ransomware Attack on NHS Causes Patient Death in the UK

A patient's death is confirmed linked to the June 2024 ransomware attack by the Qilin ransomware gang on Synnovis, crippling London's NHS. Learn about the disruptions and Impact...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2025/06/20 4:35 p.m.6 views

Qilin Ransomware Adds "Call Lawyer" Feature to Pressure Victims for Larger Ransoms

The threat actors behind the Qilin ransomware-as-a-service RaaS scheme are now offering legal counsel for affiliates to put more pressure on victims to pay up, as the cybercrime group intensifies its activity and tries to fill the void left by its rivals. The new feature takes the form of a "Call...

7AI score
Exploits0
Qualys Blog
Qualys Blog
added 2025/06/18 3:0 p.m.10 views

Lessons from Qilin: What the Industry’s Most Efficient Ransomware Teaches Us

Qilin has quietly become one of the most active and impactful ransomware operations in the world today. If it’s not already on your threat radar, now is the time to take notice. This blog unpacks how Qilin operates, why it’s gaining traction across cybercriminal networks, and what steps security...

7.5CVSS8.2AI score0.7761EPSS
Exploits4
Rows per page
Query Builder