X/Twitter (@TrendMicroRSRCH) Jan 2025
Thread
Morpheus Ransomware Emerges with New Data-Leak Site
RansomwareData Exfiltration
Thread on the emergence of the Morpheus ransomware group and its new data-leak site, with early victims including an Australian pharmaceutical firm and a German electronics company.
Related Research
Agenda Ransomware Deploys Linux Variant on Windows Systems Through Remote Management Tools and BYOVD Techniques
Discovered Agenda ransomware deploying Linux variants on Windows systems via remote management tools and BYOVD techniques for cross-platform evasion.
RansomwareCross-Platform
Agenda Ransomware Group Adds SmokeLoader and NETXLOADER to Their Arsenal
Uncovered Agenda ransomware group adopting SmokeLoader and a new loader named NETXLOADER for improved delivery and evasion.
RansomwareDefense Evasion
Cerber Ransomware Exploits Atlassian Confluence Vulnerability CVE-2023-22518
Documented Cerber ransomware operators rapidly weaponizing CVE-2023-22518 in Atlassian Confluence for initial access and encryption deployment.
RansomwareDefense Evasion
CrazyHunter Campaign Targets Taiwanese Critical Sectors
Identified CrazyHunter targeting Taiwanese healthcare and education using 80% open-source tooling and BYOVD attacks.
RansomwareTaiwan