#ransomhub

Articles tagged with #ransomhub

SocGholish Deploying a Python-based Backdoor Linked to RansomHub Affiliate
Summary eSentire discovered a cyberattack involving SocGholish (also known as FakeUpdates) malware, which was used to gather system information and deliver a zip archive containing a Python-based backdoor linked to RansomHub affiliates. Emerging in 2...
Apr 30, 20254 min read13
RansomHub Affiliate Deploys Python-Based Backdoor for Stealth Attacks
Summary In Q4 2024, GuidePoint Security uncovered a significant incident involving a Python-based backdoor used by a threat actor to maintain persistent access to compromised endpoints. This access was later exploited to deploy RansomHub encryptors a...
Jan 23, 20254 min read13