Attacks using this ransomware have displayed consistent TTPs and grown steadily since 2023.

North Korean-linked operation affected more organizations beyond 3CX, including two critical infrastructure organizations in the energy sector.

North Korean-sponsored actors believed to be linked to attack that Trojanized several versions of 3CX DesktopApp

Espionage group begins using new backdoor that leverages rarely seen steganography technique.

Destructive malware deployed against targets in Ukraine and other countries in the region in the hours prior to invasion.

Two cybersecurity firms with a strong business presence in Ukraine—ESET and Broadcom’s Symantec—have reported tonight that computer networks in the country have been hit with a new data-wiping attack.

The attack is taking place as Russian military troops have crossed the border and invaded Ukraine’s territory in what Russian President Putin has described as a “peacekeeping” mission.