The Sodinokibi gang is back, but there’s a new Sodinokibi decrypt tool for older encrypted files

Sodinokibi, also known as REvil, was one of the most persistent and dangerous ransomware variants throughout 2020 and 2021, having demanded ransoms as high as $70 million. It’s understandable that the cybersecurity community breathed a sigh of relief when Sodinokibi abruptly disappeared in July. Alas, just a few months later, in September of 2021, the…

Spearphishing Big Game Hunting Versus Widenet RDP Attacks

Hackers and cybercriminals have been turning their attention to big-game hunting, which basically refers to targeting bigger and more secure businesses where they can demand larger ransoms. Big game hunting is usually carried out through spearfishing attacks. It’s a serious cybersecurity issue that has caused significant damage, service disruption, and at the same time crashing…

cobalt strike beacon

How Ransomware Hackers can use Cobalt Strike to Stage an Attack

Cobalt Strike is an important tool in the cybersecurity arena. It’s an intensive commercial penetration testing toolkit used for different levels of intrusion. Cobalt Strike gives your pen-testers access to a wide range of attack capabilities and can be used to test your entire network for spear-phishing and other unauthorized access attempts. The toolkit emulates…

Drive by Downloads

Drive-by Downloads are not a Thing of the Past – Here’s why

If you thought drive-by downloads are a thing of the past, you may be surprised by the increasing number of these attacks in 2020. Drive-by downloads have become a prominent threat primarily due to the current increase in pre-packaged kits used by hackers to launch more sophisticated attacks with little technical skill requirements. In fact,…

Ransomware and Gmail

How Can Ransomware Attacks Happen Through Gmail?

Google was recently forced to patch a serious cross-site scripting (XSS) vulnerability on your favorite email client, Gmail. The Gmail vulnerability was discovered by an ethical hacker and chief security researcher at Securitum, Michal Bentkowski. The serious vulnerability was found in one of Gmail’s features known as the Accelerated Mobile Pages for Mail (AMP4Email), which…