ransomware as a service

Emulating the Concealed Sinobi Ransomware

Emulating the Concealed Sinobi Ransomware

| | Broad-Based Attacks, RaaS, Ransomware, ransomware as a service, Sinobi, Threat Research
AttackIQ has released a new attack graph that emulates the behaviors of Sinobi ransomware, a ransomware strain that has been active since mid 2025. Sinobi is suspected to be a rebrand of ...
AttackIQ
Default Author Image

Navigating 2026’s Converged Threats: Insights from Flashpoint’s Global Threat Intelligence Report

| | cyber intelligence, cyber threat intelligence, FEATURED, Flashpoint, gtir, Illicit communities, Information stealing malware, infostealer, insider threat, insider threats, Ransomware, ransomware as a service, Vulnerabilities, vulnerability intelligence, Vulnerability Management
In this post, we preview the critical findings of the 2026 Global Threat Intelligence Report, highlighting how the collapse of traditional security silos and the rise of autonomous, machine-speed attacks are forcing ...
Threat Intelligence Blog | Flashpoint
vulnerabilities, root cause, Microsoft Storm-1152 fake accounts CaaS

AI and RaaS Alter Threat Landscape, New Ransomware Groups Grow by 30%

| | AI & Automation, AI in Cybersecurity, AI in SOC, cyber insurance, cyber resilience, Cyber threat landscape, Cybercrime Prevention, Cybersecurity Best Practices, Digital Defense, Multi-Factor Authentication, nation-state actors, RaaS platforms, ransomware as a service, Security Research, SOC teams, Threat Intelligence, vulnerability disclosures, zero-trust architectures
AI automation, RaaS, a significant bump in vulnerability disclosures, and a rise in new ransomware gangs are reshaping the threat landscape and forcing defenders to change strategies ...
Security Boulevard
Microsoft bug bounty AI LockBit ransomware

Operation Cronos Leader Gets Nod From King Charles 

| | Critical Infrastructure, cyber warfare, Cybercrime Disruption, Cybercrime Fighting, Cybersecurity, Graeme Biggar, International Collaboration, King Charles, law enforcement, LockBit ransomware, National Crime Agency, OBE Award, Operation Cronos, Public Service., ransomware as a service, Sectigo, Strategic Coordination
Gavin Webb from the National Crime Agency receives the OBE award from King Charles for his strategic role in Operation Cronos, disrupting the LockBit ransomware group ...
Security Boulevard
Revisiting the Versatile Qilin Ransomware

Revisiting the Versatile Qilin Ransomware

| | adversary emulation, Broad-Based Attacks, Qilin, Ransomware, ransomware as a service
AttackIQ has released an updated attack graph in response to emerging threat intelligence associated with the deployment of Qilin ransomware, a ransomware strain that first appeared in July 2022 and remains one ...
AttackIQ
Ransom Tales: Volume V — Throwback Edition! Emulating REvil, DarkSide, and BlackMatter Ransomware

Ransom Tales: Volume V — Throwback Edition! Emulating REvil, DarkSide, and BlackMatter Ransomware

| | BlackMatter, Broad-Based Attacks, Darkside, Ransomware, ransomware as a service, rEvil, Uncategorized
AttackIQ presents the fifth volume of Ransom Tales, an initiative focused on emulating the Tactics, Techniques, and Procedures (TTPs) exhibited by sophisticated and prominent ransomware families with the objective of empowering defenders ...
AttackIQ
ransomware, attacks,

Three Factors Determine Whether a Ransomware Group is Successful 

| | advanced ransomware tooling, AI-driven ransomware, CaaS, cybercrime as a service, double extortion ransomware, MaaS, malware-as-a-service, MFA cybersecurity, Privileged access management, RaaS, Ransomware & Extortion, ransomware as a service, ransomware automation, ransomware customization, ransomware gangs, ransomware trends 2025, ReliaQuest ransomware report, triple extortion attacks, zero trust security
ReliaQuest’s Threat Spotlight: How Automation, Customization, and Tooling Signal Next Ransomware exposes how elite Ransomware-as-a-Service (RaaS) groups thrive. Automation, advanced tools, and attack customization attract top affiliates and drive faster, more effective ...
Security Boulevard
Emulating the Prominent Global Group Ransomware

Emulating the Prominent Global Group Ransomware

| | adversary emulation, Broad-Based Attacks, Global Group, healthcare, manufacturing, Professional Services, RaaS, Ransomware, ransomware as a service, Russia
AttackIQ has released a new attack graph that emulates the behaviors exhibited by Global Group ransomware, a threat that first appeared in June 2025 and quickly became notorious across the security landscape ...
AttackIQ
Emulating the Versatile Qilin Ransomware

Emulating the Versatile Qilin Ransomware

| | adversary emulation, Broad-Based Attacks, education, financial, government, healthcare, manufacturing, Qilin, Ransomware, ransomware as a service
AttackIQ has released a new attack graph that emulates the behaviors exhibited by Qilin ransomware, a threat that first appeared in July 2022 and remains one of the most active families today ...
AttackIQ
Emulating the Expedited Warlock Ransomware

Emulating the Expedited Warlock Ransomware

| | adversary emulation, Broad-Based Attacks, RaaS, Ransomware, ransomware as a service, ToolShell, Warlock
AttackIQ has released a new attack graph that emulates the behaviors exhibited by Warlock ransomware, which emerged in June 2025. Beginning in July, Warlock operators have primarily targeted internet-exposed, unpatched on-premises Microsoft ...
AttackIQ
Load more