Babuk – WindowsTechs.com

Head Mare and Twelve join forces to attack Russian entities

Posted on March 13, 2025 by Kaspersky

We analyze the activities of the Head Mare hacktivist group, which has been attacking Russian companies jointly with Twelve. Continue reading Head Mare and Twelve join forces to attack Russian entities→

Incident response analyst report 2024

Posted on March 12, 2025 by Kaspersky GERT, Kaspersky Security Services

Kaspersky provides incident response statistics for 2024, as well real incidents analysis. The report also shares IR trends and cybersecurity recommendations. Continue reading Incident response analyst report 2024→

Analysis of Cyber Anarchy Squad attacks targeting Russian and Belarusian organizations

Posted on December 18, 2024 by Kaspersky

Kaspersky experts analyze attacks by C.A.S, a cybergang that uses uncommon remote access Trojans and posts data about victims in public Telegram channels. Continue reading Analysis of Cyber Anarchy Squad attacks targeting Russian and Belarusian organizations→

New ‘Termite’ ransomware group claims responsibility for Blue Yonder cyberattack

Posted on December 9, 2024 by Greg Otto

The ransomware looks to be a re-worked variant of Babuk.

The post New ‘Termite’ ransomware group claims responsibility for Blue Yonder cyberattack appeared first on CyberScoop.

Continue reading New ‘Termite’ ransomware group claims responsibility for Blue Yonder cyberattack→

Notorious ransomware developer charged with computer crimes in Russia

Posted on December 2, 2024 by Greg Otto

Mikhail Matveev, better known as Wazawaka, was in court last week.

The post Notorious ransomware developer charged with computer crimes in Russia appeared first on CyberScoop.

Continue reading Notorious ransomware developer charged with computer crimes in Russia→

Analysis of the Crypt Ghouls group: continuing the investigation into a series of attacks on Russia

Posted on October 18, 2024 by Kaspersky

A close look at the utilities, techniques, and infrastructure used by the hacktivist group Crypt Ghouls has revealed links to groups such as Twelve, BlackJack, etc. Continue reading Analysis of the Crypt Ghouls group: continuing the investigation into a series of attacks on Russia→

Head Mare: adventures of a unicorn in Russia and Belarus

Posted on September 2, 2024 by Kaspersky

Analysis of the hacktivist group Head Mare targeting companies in Russia and Belarus: exploitation of WinRAR vulnerability, custom tools PhantomDL and PhantomCore. Continue reading Head Mare: adventures of a unicorn in Russia and Belarus→

US offers $10m bounty for Russian ransomware suspect outed in indictment

Posted on May 17, 2023 by Naked Security writer

“Up to $10 million for information that leads to the arrest and/or conviction of this defendant.” Continue reading US offers $10m bounty for Russian ransomware suspect outed in indictment→

Ransomware group claims 2.5 terabytes of stolen data less than a month after emerging online

Posted on May 15, 2023 by AJ Vicens

A new cybercrime outfit calling itself RA GROUP is just the latest to take advantage of leaked Babuk ransomware source code.

The post Ransomware group claims 2.5 terabytes of stolen data less than a month after emerging online appeared first on CyberScoop.

Continue reading Ransomware group claims 2.5 terabytes of stolen data less than a month after emerging online→

Ransomware group claims 2.5 terabytes of stolen data less than a month after emerging online

Posted on May 15, 2023 by AJ Vicens

A new cybercrime outfit calling itself RA GROUP is just the latest to take advantage of leaked Babuk ransomware source code.

The post Ransomware group claims 2.5 terabytes of stolen data less than a month after emerging online appeared first on CyberScoop.

Continue reading Ransomware group claims 2.5 terabytes of stolen data less than a month after emerging online→