Kittykatkrew Operations Have Officially Begun

We are actively monitoring the group’s Tor leak site. The “Operations Begin” countdown now shows less than one hour remaining.

Victim publications appear imminent.

We will continue monitoring developments and provide updates as activity progresses.

Weaponizing ClickFix for Fileless Data Exfiltration After a recent report from BleepingComputer regarding ClickFix using DNS lookups to stage payloads, we decided to take a closer look at the ClickFix attack and abusing DNS. Most public analysis frames...

Weaponizing ClickFix for Fileless data exfiltration this could be leveraged for other exploitations utilizing existing system utilities

point6security.com/weaponizing-...

0Apt Ransomware Analysis 0APT emerged publicly with widespread claims of active compromise and victim impact. Subsequent community validation determined many of those claims lacked verifiable evidence. Shortly thereafter, a ...

We got our hands on a 0apt malware package. It’s a functional if uninspiring piece of Rust code.

point6security.com/0apt-ransomw...

Tier1: The Russian Cybercrime Forum Emerging in RAMP’s Wake The dismantling of the Russian language ransomware forum RAMP removed a functioning coordination space within the ransomware ecosystem. RAMP acted as connective infrastructure where operators, affilia...

A new Russian language cybercrime forum Tier1 is beginning to gain traction in the wake of the disruption of RAMP

point6security.com/tier1-the-ru...

#CyberSecurity #ThreatIntelligence #DarkWeb #Infosec

Critical Pre-Auth RCE Vulnerability in BeyondTrust Remote Support & PRA Allegedly Exposes Thousands of Instances

x.com/DarkWebInfor...

Augustus is a new open source security framework for detecting prompt injection, jailbreaks, and adversarial attacks.

github.com/praetorian-i...

point6security.com/the-augustus...

ScarCruft Activity Reflects Continued Evolution of Established Trade Recent threat intelligence reporting has renewed focus on activity attributed to APT37, also tracked under the name ScarCruft. While individual campaigns continue to surface across reporting, the broa...

APT37 ScarCruft Continues to Evolve

point6security.com/scarcruft-ac...

OpenClaw Partners With VirusTotal as Skill Marketplace Security Comes Under Intense Scrutiny OpenClaw has announced a new partnership with VirusTotal to introduce automated scanning for skills published to its community marketplace, ClawHub. According to OpenClaw’s official announcement, the ...

OpenClaw Partners With VirusTotal

point6security.com/openclaw-par...

Emerging Ransomware Group: Insomnia

point6security.com/insomnia-eme...

#Ransomware #Cybersecurity #ThreatIntelligence #DarkWeb #DataBreach #HealthcareSecurity #EmergingThreats #incidentresponse