RaaS Archives

medusa, Snowflake data breach hacker arrested

The Gentlemen is Making Its Mark in the Ransomware World

Jeffrey Burt | May 28, 2026 | AttackIQ, BlackFog, Blackpoint Cyber, Check Point Research, Cybereason, double extortion ransomware, GuidePoint Security, NCC Group, Proxies, RaaS, Ransomware, SystemBC, The Gentlemen, Trend Micro

The Gentlemen RaaS group emerged onto the scene a year ago and in that time has racked up affiliates and victims at an alarming rate, becoming the second most active ransomware group ...

Security Boulevard

Emulating the Concealed Sinobi Ransomware

Ayelen Torello | April 2, 2026 | Broad-Based Attacks, RaaS, Ransomware, ransomware as a service, Sinobi, Threat Research

AttackIQ has released a new attack graph that emulates the behaviors of Sinobi ransomware, a ransomware strain that has been active since mid 2025. Sinobi is suspected to be a rebrand of ...

AttackIQ

Emulating the Systematic LokiLocker Ransomware

Ayelen Torello | February 26, 2026 | adversary emulation, Broad-Based Attacks, LokiLocker, RaaS, Ransomware, Threat Research

AttackIQ has released a new attack graph that emulates the behaviors of LokiLocker ransomware, a .NET based strain active since at least mid-August 2021. The malware combines defense evasion and impact techniques, ...

AttackIQ

Emulating the Mutative BlackByte Ransomware

Francis Guibernau | February 25, 2026 | BlackByte, Broad-Based Attacks, Critical Infrastructure, Energy, Financial Services, government, manufacturing, RaaS, Ransomware, Threat Research

AttackIQ has released a new attack graph that emulates the behaviors exhibited by BlackByte ransomware, a strain operated under the Ransomware-as-a-Service (RaaS) model that emerged in July 2021. Since its emergence, BlackByte ...

AttackIQ

A Week in Cyber Threats: Emerging Attack Campaigns and Adversary Activity Across the Globe

Aniket Gurao | January 29, 2026 | intelligence, RaaS, Uncategorized, VPN

Executive Overview The global cyber threat landscape continues to evolve at speed, with adversaries ranging from nation-state espionage groups to financially motivated ransomware operators and cybercriminal collectives. Over the past seven days, ...

Seceon Inc

Three Factors Determine Whether a Ransomware Group is Successful

ReliaQuest’s Threat Spotlight: How Automation, Customization, and Tooling Signal Next Ransomware exposes how elite Ransomware-as-a-Service (RaaS) groups thrive. Automation, advanced tools, and attack customization attract top affiliates and drive faster, more effective ...

Security Boulevard

Emulating the Prominent Global Group Ransomware

Ayelen Torello | October 16, 2025 | adversary emulation, Broad-Based Attacks, Global Group, healthcare, manufacturing, Professional Services, RaaS, Ransomware, ransomware as a service, Russia

AttackIQ has released a new attack graph that emulates the behaviors exhibited by Global Group ransomware, a threat that first appeared in June 2025 and quickly became notorious across the security landscape ...

AttackIQ

Emulating the Expedited Warlock Ransomware

Francis Guibernau | August 27, 2025 | adversary emulation, Broad-Based Attacks, RaaS, Ransomware, ransomware as a service, ToolShell, Warlock

AttackIQ has released a new attack graph that emulates the behaviors exhibited by Warlock ransomware, which emerged in June 2025. Beginning in July, Warlock operators have primarily targeted internet-exposed, unpatched on-premises Microsoft ...

AttackIQ

Emulating the Terrorizing VanHelsing Ransomware

Ayelen Torello | May 15, 2025 | adversary emulation, Broad-Based Attacks, RaaS, Ransomware, ransomware as a service

AttackIQ has released a new attack graph emulating the behaviors exhibited by VanHelsing ransomware, a new and rapidly growing ransomware-as-a-service (RaaS) affiliate program that emerged in March 2025. This emulation enables defenders ...

AttackIQ

Medusa Ransomware: Inside the 2025 Resurgence of One of the Internet’s Most Aggressive Threats

Ravit Sadeh | April 18, 2025 | Cybersecurity, Medusa ransomware, RaaS

Medusa: Its operations, the main factor driving its recent resurgence, which has led to warnings issued by global authorities, its targets and why it’s so dangerous ...

Security Boulevard

RaaS

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On