Threat Advisories

RA Group’s Custom Ransomware Hits US & South Korea

May 16, 2023

Threat Level

Attack Report

For a detailed threat advisory, download the pdf file here

Summary

The emergence of the RA ransomware group highlights the utilization of the recently leaked Babuk ransomware source code as they employ it to develop their variant of the malware.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.

Lancefly APT Group Deploys Custom Backdoor ‘Merdoor’ in Targeted Attacks

Water Orthrus Targets Chinese Users with CopperStealth and CopperPhish