RaaS

Emulating the Terrorizing VanHelsing Ransomware

| | adversary emulation, Broad-Based Attacks, RaaS, Ransomware, ransomware as a service
AttackIQ has released a new attack graph emulating the behaviors exhibited by VanHelsing ransomware, a new and rapidly growing ransomware-as-a-service (RaaS) affiliate program that emerged in March 2025. This emulation enables defenders ...
AttackIQ
medusa, Snowflake data breach hacker arrested

Medusa Ransomware: Inside the 2025 Resurgence of One of the Internet’s Most Aggressive Threats 

| | Cybersecurity, Medusa ransomware, RaaS
Medusa: Its operations, the main factor driving its recent resurgence, which has led to warnings issued by global authorities, its targets and why it’s so dangerous ...
Security Boulevard

Emulating the Relentless RansomHub Ransomware

| | adversary emulation, Broad-Based Attacks, RaaS, RansomHub, ransomware as a service
AttackIQ has released a new attack graph emulating the behaviors exhibited by RansomHub ransomware since its emergence in February 2024. This sophisticated ransomware employs double extortion techniques and shares notable similarities with ...
AttackIQ

Emulating the Deceptive Akira Ransomware

| | adversary emulation, Akira, Broad-Based Attacks, RaaS, Ransomware, ransomware as a service
AttackIQ has released a new attack graph emulating the behaviors exhibited by Akira ransomware since its emergence in March 2023. Akira operators provide victims the option to pay for either file decryption ...
AttackIQ

Emulating the Splintered Hunters International Ransomware

| | adversary emulation, Broad-Based Attacks, RaaS, Ransomware
AttackIQ has released a new attack graph emulating the behaviors exhibited by Hunters International ransomware since its discovery in October 2023. Technical analysis suggests a realistic possibility that Hunters International may have ...
AttackIQ

Emulating the Splintered Hunters International Ransomware

| | adversary emulation, Broad-Based Attacks, RaaS, Ransomware
AttackIQ has released a new attack graph emulating the behaviors exhibited by Hunters International ransomware since its discovery in October 2023. Technical analysis suggests a realistic possibility that Hunters International may have ...
AttackIQ

Response to CISA Advisory (AA25-022A): Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications

| | cisa, Cloud, Cybersecurity Advisory, Cybersecurity Advisory (CSA), Ivanti, RaaS, Ransomware, Remote Code Execution (RCE)
AttackIQ has released a new assessment template in response to the CISA Advisory (AA25-022A) published on January 22, 2025, which details the exploitation of vulnerabilities discovered in Ivanti Cloud Service Appliances during ...
AttackIQ

Response to CISA Advisory (AA25-022A): Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications

| | cisa, Cloud, Cybersecurity Advisory, Cybersecurity Advisory (CSA), Ivanti, RaaS, Ransomware, Remote Code Execution (RCE)
AttackIQ has released a new assessment template in response to the CISA Advisory (AA25-022A) published on January 22, 2025, which details the exploitation of vulnerabilities discovered in Ivanti Cloud Service Appliances during ...
AttackIQ

Emulating the Petrifying Medusa Ransomware

| | adversary emulation, Broad-Based Attacks, living off the land, Medusa, RaaS, Ransomware, ransomware as a service
AttackIQ has released a new attack graph that emulates the behaviors exhibited by Medusa ransomware since the beginning of its activities in June 2021. Medusa is predominantly propagated through the exploitation of ...
AttackIQ
ransomware, attacks, Rubrik, cybersecurity, Ransomware, attacks, payment, RaaS, ransomware, attack, healthcare

Strengthening Security Posture in the World of Outsourced Ransomware-as-a-Service (RaaS)

| | attacks, Cybersecurity, Data Security, RaaS, Ransomware
These proactive defense measures - vulnerability management, MFA and EDR - remain critical in the ongoing battle against RaaS groups and bad actors ...
Security Boulevard
Load more