Identity Reveal: The Threat Actor Behind ONNX Store and Caffeine Phishing Kit
On June 18th, we observed a lot of security news about “ONNX phishing-as-a-service (PhaaS),” a...
Read More
Investigation Report: 105K User Data Breach at Egyptian E-Commerce Website
On 13th April 2024, a threat actor named “BIGBlack” Posted a thread on a Darkweb forum titled...
Read More
In-Depth Technical Analysis of Nightingale Stealer
Around 15th December, a threat actor appeared on multiple forums advertising their stealer,...
Read More
In-Depth Technical Analysis of SEIDR Stealer
On December 28, a new info-stealer called SEIDR Information Stealer appeared on an underground...
Read More
LockBit Ransomware: From Cybercriminal Glory to a Critical OPSEC Failure
What Is lockbit ? LockBit is a family of ransomware that takes advantage of widely available...
Read More
Akira Ransomware Road To Glory
Executive Summary First Identified:March 2023 Operation Style:is a ransomware variant and...
Read More
Delivering Trojans Via ClickFix Captcha
Overview Recently, a new social engineering technique has emerged, rapidly gaining traction as a...
Read More
BlackLock Ransomware: A Growing Threat Across Industries
BlackLock could become the most active RaaS group of 2025. The latest threat report from the...
Read More
Identity Reveal: The Threat Actor Behind ZATCASAUDI ARABIA Leaks
Identity Reveal: The Threat Actor Behind ZATCA SAUDI ARABIA Leaks On May 11, 2024, at 12:32...
Read More
Helldown Ransomware Analysis
Introduction Helldown ransomware, first identified in August 2024, is a recent addition to the...
Read More
Fog Ransomware – Technical Analysis
what is Fog ? In June [Arctic Wolf Labs] reported a deployment of a new ransomware named Fog...
Read More
Sidewinder APT – Phishing on Pakistan
Introduction On July 30th, [StrikeReady Labs] reported the discovery of a malicious **LNK** file....
Read More
Medusa Ransomware Group’s OPSEC Failure: Infiltrating Their Cloud Storage
Dark Atlas Squad recently responded to a ransomware incident carried out by Medusa Ransomware...
Read More
Kimsuky APT: The TrollAgent Stealer Analysis
The Kimsuky APT is a North Korea-based cyber espionage group that has been operating since at least...
Read More