The Exploit for the RCE on Palo Alto Firewalls is now Online! And let the Administration be for all
A few hours ago on Breach Forum, a threat actor by the name “newplzqibeme” shared a GitHub repository where a python-written exploit for active exploitation
RHC DarkLab Interviews Interlock Ransomware. “Don’t waste your energy and time. We will do it for you.”
RHC DarkLab has always taken a unique and provocative approach in the fight against cyber threats, summed up by the motto: ‘One must know the
RHC DarkLab Interview Stormous Ransomware. Between history, ideology, techniques and tactics
The Stormous group represents a significant threat in the ransomware landscape: it has an established reputation for its targeted attacks and its overtly pro-Russian ideology.
How Threat Actor make EDR’s harmless with a reboot
I became aware of this technique like 9 months ago, and now I see this on a attack in the wild conducted by Qilin Ransomware
The Story Of Conti Ransomware – The War Within (Episode 2)
This is a continuation of the Conti story. You can read the previous part, which covered the group’s origins, in the previous article. We will
IntelBroker Claims Tesla Charging Database Breach
Recently, the threat actor known as IntelBroker , posted an alleged data breach. The post, which appeared on the BreachForums platform, claims that Tesla’s charging station database
Linkc Ransomware: The New Cybercriminal Group Targeting Artificial Intelligence Data
Pietro Melillo - February 20th, 2025
In the DarkLab group's underground analysis activity, we ventured onto an onion site that is apparently a Data Leak Site (DLS) of a new ransomware cyber gang. This new actor...
The UK’s Digital Crackdown: how the government is using our online habits to breach human rights
Ashleigh Crause - February 12th, 2025
In today's digital age, the boundaries between lawful expression and governmental overreach are becoming increasingly blurred in the United Kingdom. Citizens are finding themselves under scrutiny, and in some cases,...
Ransomware Gangs weaponize Windows Defender Application Control (WDAC) to disable EDR products.
Alex Necula - January 13th, 2025
In the past days we saw that Ransomware Gangs use WDAC to disable EDR products. I have known this type of attack for a year when a guy posts a...
The Story Of Conti Ransomware – The Last Ceremony (Final Episode)
Alessio Stefan - January 8th, 2025
This is the last episode of “The Story Of Conti Ransomware” series, we would finally reach the decline of the group and what this means for the current ransomware landscape....
Sign up for the newsletter