Blog

Latest articles from SOCRadar

How is Threat Intelligence Used to Monitor Criminal Activity on the Dark Web?
May 31, 2023

How is Threat Intelligence Used to Monitor Criminal Activity on the Dark Web?

The dark web is a part of the Internet that differs from the regular Internet as it is a network that offers anonymity and privacy. Because of its structure, it has evolved into a network… Continue Reading

The Mutation Effect of Babuk Code Leakage: Unleashing New Ransomware Variants
May 30, 2023

Mutation Effect of Babuk Code Leakage: New Ransomware Variants

Ransomware continues to be a significant concern for individuals and organizations alike. One particular ransomware group, Babuk, made headlines in 2021 due to the leakage of its source code. This event has led to the emergence of new… Continue Reading

May 29, 2023

New RaaS Emerged, RDP Access, Database, and Credit Card Sales

Welcome to this week's dark web news summary. We uncover a new ransomware tool called "NoEscape" on the dark web. Credit cards from Saudi Arabia are being sold, raising concerns about financial fraud. Additionally, unauthorized… Continue Reading

May 22, 2023

Credit Card, RDP Access, Health, and Business Data Sales

Welcome to this week's edition of our dark web news summary, where we bring you the latest updates on the clandestine world of cybercrime. This week's headlines shed light on the alarming activities within the… Continue Reading

May 16, 2023

Major Cyberattacks in Review: April 2023

In April 2023, several cybersecurity incidents were reported across various industries. These included supply chain attacks, data breaches, and cryptocurrency thefts. It's important to keep up-to-date on the nature of these attacks, their implications, and… Continue Reading

May 15, 2023

VMware Vulnerability Exploit, Invicta Stealer, and Source Code Sales

This week's headlines feature some developments that highlight the ongoing threats posed by cybercriminals. First up, we have news of a remote code execution exploit for VMware Workspace ONE that has been shared on the… Continue Reading

Dark Web Profile: KillNet Anonymous Sudan
May 9, 2023

Dark Web Profile: KillNet Anonymous Sudan

While Anonymous is a decentralized, anti-political cyber hacktivist movement, and typically anyone can claim to work under the Anonymous banner, groups like Anonymous Russia are not aligned with mainstream and western-based Anonymous groups and support… Continue Reading

May 8, 2023

Vocalcom Ransomware Attack, Credit Card Sales, and Botnet Services

This week, we have some troubling news to share, like always. We've learned that half a million credit cards belonging to Brazilians are up for sale on the dark web. In addition, an American shop… Continue Reading

Dark Web Profile: BlackByte Ransomware
May 2, 2023

Dark Web Profile: BlackByte Ransomware

Ransomware has been one of the most glaring threats against organizations in recent years. Since 2021 SOCRadar has detected around 5,600 ransomware attacks. There was a rise from 2021 to 2022 in the number of attacks… Continue Reading

May 2, 2023

Salesforce Credentials Leak, Admin, and Webshell Access Sales, Partnership Announcements

We are experiencing a period in which threat actors are increasingly outsourcing and growing the cybercrime network. SOCRadar researchers have previously addressed these issues in their initial access and vulnerability brokers articles. The larger this network, the easier attackers… Continue Reading

Dark Web Profile: LockBit 3.0 Ransomware
April 27, 2023

Dark Web Profile: LockBit 3.0 Ransomware

The frequency of ransomware attacks is on the rise every year. A single group, the LockBit Ransomware Group, is accountable for over one-third of all ransomware attacks in the latter half of the previous year, the… Continue Reading

April 24, 2023

New Victims of BlackCat and LockBit, Gentex Data Breach, and Education Institution Access Sales

Powered by DarkMirror™ Ransomware is on the headlines again in SOCRadar's weekly dark web summary. Well-known cybercrime gangs LockBit and BlackCat (ALPHV) continue their attacks. The BlackCat ransomware gang announced that they attacked Western Digital… Continue Reading

April 17, 2023

The Royal Ransomware’s Latest Victim, Micro-Star International, KuCoin, and Kuwaiti Citizens Data Sales

Powered by DarkMirror™ This week, KillNet announced a series of high-impact Distributed Denial of Service (DDoS) attacks. The Royal ransomware group also added Stanley Electric to its victim list. Data of Micro-Star International, KuCoin Kuwaiti… Continue Reading

Lockbit 3.0
April 17, 2023

Lockbit 3.0: Another Upgrade to World’s Most Active Ransomware

Last Update: April 17, 2023 LockBit Ransomware gang, also known as Bitwise Spider, are the cybercriminal masterminds behind the popular Lockbit Ransomware-as-a-service. They are one of the most active ransomware gangs with generally multiple victims… Continue Reading

Recapping Cyberwatch: Insights and Key Takeaways from April's Webinar
April 13, 2023

Recapping Cyberwatch: Insights and Key Takeaways from April’s Webinar

In today's digital world, cyberattacks are becoming increasingly frequent and sophisticated, posing a significant threat to individuals, businesses, and governments worldwide. In March, we witnessed several high-profile cyber incidents highlighting the need for robust security… Continue Reading

What's Next for Cybercrime Ecosystem After Genesis Market Takedown?
April 11, 2023

What’s Next for Cybercrime Ecosystem After Genesis Market Takedown?

One can desire the forbidden, as is the narrative in the Genesis chapter of the Old Testament. In today's digital world, the means of approaching the forbidden are underground markets. One of the most important… Continue Reading

Major Cyberattacks in Review: March 2023
April 10, 2023

Major Cyberattacks in Review: March 2023

Cybersecurity remains a major concern for organizations of all sizes as cyberattacks become more sophisticated and frequent. Despite efforts to enhance security measures, cybercriminals continue to find new ways to breach networks and systems. Organizations must stay… Continue Reading

April 10, 2023

MSI Breach, Operation Cookie Monster & Data Sales

Powered by DarkMirror™ Ransomware attacks continue to be a nightmare for organizations. The Money Message group made a name for itself for a while and performed a shocking attack last week. The threat actor targeting… Continue Reading

What is a Phishing Kit?
April 6, 2023

What is a Phishing Kit?

A phishing kit is a set of software tools, such as HTML, pictures, and code that fraudsters can use to construct and launch phishing attacks. Phishing kits allow anyone with little or no phishing experience to… Continue Reading

April 3, 2023

Notorious Ransomware Gangs on Attack Spree

Powered by DarkMirror™ In the dark web summary of the previous week, we talked about the victims that the Clop ransomware group has repeatedly revealed. Probably they also inspired other threat actors because we saw… Continue Reading

SOCRadar helps you visualize digital risk, and reduce your company's attack surface
Request Demo