Group-IB Archives

ransomware backup, RaaS Columbus Rhysida

Hunters International Dumps Ransomware, Goes Full-on Extortion

Jeffrey Burt | April 4, 2025 | data extortion, Group-IB, Hunters International, Ransomware-as-a-Service (RaaS)

Hunters International, the RaaS group that some believe evolved from Hive, appears to be rebranding and shifting operations, moving away from an unprofitable and risky ransomware business and focusing solely on exfiltrating ...

Security Boulevard

GambleForce Attacks: APAC Firms Targeted With SQL Injections

In light of recent GambleForce attacks, a new threat actor has emerged, targeting more than 20 organizations across the Asia-Pacific region. The hacker group is mainly known for deploying SQL injections to ...

TuxCare

Krasue RAT Malware: A New Threat to Linux Systems

Rohan Timalsina | December 20, 2023 | Cyber Threats, Cybersecurity, Cybersecurity Weaknesses, Group-IB, Krasue RAT, Linux & Open Source News, linux servers, malware attacks, Malware Detection, Open Source Threats, rootkit

In the field of cybersecurity, a potent and covert threat called Krasue has surfaced. This remote access trojan has been silently infiltrating Linux systems, primarily targeting telecommunications companies since 2021. This blog ...

TuxCare

Russia Sends Cybersecurity CEO to Jail for 14 Years

BrianKrebs | July 26, 2023 | Evil Corp., Fancy Bear, Financial Times, Group-IB, GRU, Ilya Sachkov, Kaspersky Lab, Maksim Yakubets, Max Seddon, Ruslan Stoyanov, Sergei Mikhailov, The Coming Storm

The Russian government today handed down a treason conviction and 14-year prison sentence on Iyla Sachkov, the former founder and CEO of one of Russia's largest cybersecurity firms. Sachkov, 37, has been ...

Krebs on Security

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

BrianKrebs | June 29, 2023 | Arkady Bukh, Dmitry Volkov, dropbox, FACCT, Fight Against Cybercrime Technologies, Formspring, Group-IB, Ilya Sachkov, Lamarez, linkedin, Ne'er-Do-Well News, Oleg Tolstikh, Oleksandr Vitalyevich Ieremenko, U.S. Secret Service, U.S. Securities & Exchange Commission, Yevgeniy Nikulin, Zl0m

Nikita Kislitsin, formerly the head of network security for one of Russia's top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. Department of ...

Krebs on Security

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

BrianKrebs | February 9, 2023 | A Little Sunshine, Adam Meyers, Christina Svechinskaya, CrowdStrike, Dyre, Group-IB, Ilya Sachkov, Kaspersky Lab, Ne'er-Do-Well News, Ransomware, Ruslan Stoyanov, Sergey Mikhaylov, TrickBot, U.S. Department of Treasury, Vitaly "Bentley" Kovalev, Wizard Spider

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating "Trickbot," a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and ...

Krebs on Security

How 1-Time Passcodes Became a Corporate Liability

BrianKrebs | August 30, 2022 | 0ktapus, Christopher Knauer, CloudFlare, Data breaches, DigitalOcean, DoorDash, Group-IB, Klaviyo, MailChimp, Matthew Prince, Security Keys, Security Tools, signal, Sitel Group, T-Mobile, Teleperformance, Twilio, Twitter, Web Fraud 2.0

Phishers are enjoying remarkable success using text messages to steal remote access credentials and one-time passcodes from employees at some of the world's largest technology companies and customer support firms. A recent ...

Krebs on Security

When Efforts to Contain a Data Breach Backfire

BrianKrebs | August 16, 2022 | A Little Sunshine, Banorte breach, CloudSecurityAlliance, CTI League, Data breaches, Group-IB, Kurt Seifried, Ohad Zaidenberg, Web Fraud 2.0

Earlier this month, the administrator of the cybercrime forum Breached received a cease-and-desist letter from a cybersecurity firm. The missive alleged that an auction on the site for data stolen from 10 ...

Krebs on Security

EU, Russia, cyberattacks, cyberthreats Russian Group-IB EU Russia Project Lakhta’s Accountant

Russian Cybersecurity Group-IB CEO Arrested for Treason by FSB

Christopher Burgess | September 29, 2021 | cybercrime, FSB, Group-IB, Ilya Sachkov, Russia

The evening of September 28, 2021, the FSB rolled up to the offices of Group-IB in marked vehicles and a full-size passenger bus and raided the company’s Moscow offices. Russian media reports ...

Security Boulevard

‘ValidCC,’ a Major Payment Card Bazaar and Looter of E-Commerce Sites, Shuttered

BrianKrebs | February 2, 2021 | Gemini Advisory, Group-IB, Media Land LLC, Ne'er-Do-Well News, SPR, Stas Alforov, UltraRank, Validcc, Web Fraud 2.0

ValidCC, a dark web bazaar run by a cybercrime group that for more than six years hacked online merchants and sold stolen payment card data, abruptly closed up shop last week. The ...

Krebs on Security