🚨New ransom group blog post!🚨

Group name: incransom
Post title: Midwestern Oil & Gas
Info: https://cti.fyi/groups/incransom.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: incransom
Post title: lohmann-tapes.com
Info: https://cti.fyi/groups/incransom.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: rhysida
Post title: Phoenix Art Museum
Info: https://cti.fyi/groups/rhysida.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

Indicators added for: Orcus RAT (+3), GCleaner (+1), Gh0stnet (+1), PureRAT (+1), Chaos (+1), RemcosRAT (+1) and PowerShell (+1). https://vuldb.com/?actor #apt #cti #ioc

🚨New ransom group blog post!🚨

Group name: incransom
Post title: excavationtourigny.ca
Info: https://cti.fyi/groups/incransom.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: incransom
Post title: auxhomeservices.com
Info: https://cti.fyi/groups/incransom.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: incransom
Post title: atchadwick.net
Info: https://cti.fyi/groups/incransom.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: incransom
Post title: www.hfplanners.com
Info: https://cti.fyi/groups/incransom.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: play
Post title: Northbridge
Info: https://cti.fyi/groups/play.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: play
Post title: Makivik
Info: https://cti.fyi/groups/play.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: play
Post title: Catalanatto & Barnes
Info: https://cti.fyi/groups/play.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: play
Post title: Altak
Info: https://cti.fyi/groups/play.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

Added some more indicators for: Vidar (+4), pupy (+1), PureRAT (+1), PureLogs Stealer (+1), m0yv (+1), Gh0stnet (+1) and RedLine Stealer (+1). https://vuldb.com/?actor #apt #cti #ioc

Incredible report about the structure of the cyber-offensive operations of the Russian GRU.

https://checkfirst.network/wp-content/uploads/2026/02/OSINT_Phaleristics_Unveiling_GRUs_Information_Operations_Troops.pdf

#threatintel #CTI #disinformation

🚨New ransom group blog post!🚨

Group name: nitrogen
Post title: PCCA
Info: https://cti.fyi/groups/nitrogen.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: play
Post title: Milwaukee Forge
Info: https://cti.fyi/groups/play.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: spacebears
Post title: PrintForm
Info: https://cti.fyi/groups/spacebears.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: incransom
Post title: moultriesheriff.com
Info: https://cti.fyi/groups/incransom.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🚨New ransom group blog post!🚨

Group name: spacebears
Post title: Texcomp
Info: https://cti.fyi/groups/spacebears.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

Un article de #CTI de nos confrères de Trend Micro mettait récemment en évidence une attaque de Supply Chain. Notre propre équipe de Threat Intelligence a creusé derrière les indicateurs partagés et en a découvert des informations additionnelles ➡️ https://www.stormshield.com/news/investigation-on-the-emeditor-supply-chain-attack/?at_medium=social&at_campaign=cti-emeditor&at_platform=Mastodon