Latest posts tagged with #rhysida on Bluesky
~Sekoia~
A multi-stage loader using custom encryption and steganography to deliver payloads like Rhysida ransomware.
-
IOCs: 85. 239. 53. 66, 51. 222. 96. 108, 135. 125. 241. 45
-
#OysterLoader #Rhysida #ThreatIntel
#OysterLoader (aka #Broomstick or #Cleanup) is not just another downloader. Often serving as a precursor to #Rhysida #ransomware campaigns or distributing commodity malware such as #Vidar, this threat has evolved significantly as we enter 2026.
blog.sekoia.io/oysterloader...
#Reverse
GootLoader Bypasses Security With ZIPs
Read More: buff.ly/3Uc6emB
#GootLoader #Malware #InitialAccess #Ransomware #CobaltStrike #Rhysida #WindowsSecurity #ThreatHunting #EDR #MalwareAnalysis #CyberDefense
Full report: www.technadu.com/japanese-sch...
Do you think educational institutions are adequately prepared for ransomware threats? Comment below.
#RansomwareAttack #DataLeak #EducationSector #CyberSecurity #Rhysida
United Keetoowah Band in Oklahoma closes Stilwell office amid computer issues, Rhysida listing #UnitedKeetoowahBand #Ransomware #Rhysida #Oklahoma #Cherokee #cybersecurity dysruptionhub.com/united-keetoowah-band-it...
Rhysida runs Bing malvertising to push fake installers (Teams, PuTTy) delivering OysterLoader; samples are packed and code-signed for low VT detections and persistent backdoor delivery. #Rhysida #malvertising #OysterLoader https://bit.ly/3WA83X9
This 2025 campaign shows major escalation — 40+ code-signing certs used, 200+ revoked by Microsoft. The gang also pushes Latrodectus malware via similar tactics. Rhysida’s malvertising ops are growing bolder & more dangerous.
#APT #Rhysida #OysterLoader #CyberThreat
⚠️ Rhysida ransomware gang is back — spoofing Microsoft Teams ads on Bing to push malware through fake download pages. Victims got hit with OysterLoader & Latrodectus payloads.
#CyberSecurity #Rhysida #Ransomware #InfoSec #MalwareAlert #Phishing
Microsoft disrupted a wave of Rhysida ransomware attacks. These attacks were part of malvertising campaign that used search engine ads and SEO poisoning to push fake #Microsoft Teams installers
#teams #advertising #Rhysida #ransomware #malware #security #cybersecurity #hackers #hacking #hacked
📰 Microsoft Gagalkan Serangan Ransomware Rhysida yang Menyasar Pengguna Teams
👉 Baca artikel lengkap di sini: ahmandonk.com/2025/10/17/microsoft-tea...
#cybersecurity #digicert #globalsign #microsoft #ransomware #rhysida #ssl.com #teams #vanilla #tempest #vice #society
Microsoft Revokes Over 200 Certificates to Disrupt Ransomware Campaign The tech giant attributed the attacks to Vanilla Tempest, also known as Vice Spider and Vice Society. The post Microsoft Revok...
#Ransomware #certificates #disrupted #Microsoft #Rhysida […]
[Original post on securityweek.com]
🚨 Elkhart Independent School District 🇺🇸 has been added to the data leak site of #ransomware gang #Rhysida.
It's demanding 10 BTC ($1.14M USD) or the stolen data will be released in 7 days.
The school hasn't disclosed a #cyberattack as of yet.
bit.ly/4bsqDGS
#education
🆕 🇮🇹 via, @ransomnews.online
🏴☠️ Gruppo: #rhysida | Rivendicazione attacco informatico
🗒️ 6° attacco catalogato nel mese di Agosto
⚠️ 115° attacco #Ransomware catalogato nel 2025
🚨 nuova rivendicazione #ransomware Italia 🚨
🏴☠️ gruppo #Rhysida
🧬 Alascom SRL | Milano
🎯 settore: industria robotica
🔗 alascom.it
🗓️ 11 agosto 2025
📄 sample: sì
▪️ dati esfiltrati dichiarati: -
▪️ dati esfiltrati pubblicati: -
⏲️ scadenza: 17 agosto 2025
#ransomNews #security #infosec
🚨 Cybercriminals give Indiana megachurch 7 days to pay $600K ransom after July 2025 #databreach.
#Rhysida claimed an attack on the First Baptist Church of Hammond after it confirmed a #cyberattack earlier this month. SSNs, IDs & health info affected.
bit.ly/3H56tIC
By: @pabischoff.bsky.social
‼️Florida Lung, Asthma & Sleep Specialists (FLASS) 🇺🇸 is issuing #databreach notifications to 10K people following a #cyberattack in May 2025.
#Ransomware gang #Rhysida claimed the attack on the healthcare company with a 6 BTC ($640K) ransom.
bit.ly/4bsqDGS
Ransomware Group rhysida Hits: Florida Hand Center www.hookphish.com/blog/ransomw... #cyberattack #databreach #floridahandcenter #ransomware #rhysida
🚨Welthungerhilfe (WHH) 🇩🇪 has been added to the data leak site of #ransomware gang #Rhysida with a 20 BTC ($2.15M) ransom.
The German humanitarian aid company confirmed it was hit by a #cyberattack in May 2025.
bit.ly/3T0yGne
Ransomware Group rhysida Hits: Welthungerhilfe www.hookphish.com/blog/ransomw... #potatoattack #databreach #ransomware #rhysida #welthungerhilfe
Ransomware Group rhysida Hits: Welthungerhilfe www.hookphish.com/blog/ransomw... #cyberattack #databreach #ransomware #rhysida #welthungerhilfe
Ransomware Group rhysida Hits: Coreix www.hookphish.com/blog/ransomw... #coreix #cyberattack #databreach #ransomware #rhysida
Ransomware Group rhysida Hits: Hudson River Housing www.hookphish.com/blog/ransomw... #cyberattack #databreach #hudsonriverhousing #ransomware #rhysida
Ransomware Group rhysida Hits: Cator Ruma and Associates www.hookphish.com/blog/ransomw... #catorrumaandassociates #cyberattack #databreach #ransomware #rhysida
🚨 Termolar 🇧🇷 was added to the data leak site of #ransomware gang #Rhysida with a 15 BTC ($1.54M) ransom demand.
The Brazilian manufacturer hasn't confirmed a #cyberattack but did note system disruptions in March.
Updates to follow!
bit.ly/3T0yGne
Ransomware Group rhysida Hits: Sao Camilo Cachoeiro de Itapemirim www.hookphish.com/blog/ransomw... #cyberattack #databreach #ransomware #rhysida #saocamilocachoeirodeitapemirim
Ransomware Group rhysida Hits: Mountain View Mushrooms www.hookphish.com/blog/ransomw... #cyberattack #databreach #mountainviewmushrooms #ransomware #rhysida
🚨The Government of Peru 🇵🇪 has been added to the data leak site of #ransomware gang #Rhysida with a 5 BTC ($484K) ransom demand.
Glitches on the government's website were reported but the government has said there is no evidence of a #cyberattack.
bit.ly/3T0yGne
Ransomware Group rhysida Hits: Coop UQAM www.hookphish.com/blog/ransomw... #coopuqam #cyberattack #databreach #ransomware #rhysida
