Case Study
Explore detailed case of real-world ransomware attacks, data breaches, and incident response scenarios. Learn how the incident unfolded, the steps taken to contain and recover.
In a recent incident response, our Digital Forensics and Incident Response (DFIR) team discovered that SafePay ransomware had been deployed on the victim’s machines. The first confirmed activity of SafePay ransomware was in September 2024, and since its inception, the group has increased its activity, adding more victims to its Data Leak Site (DLS). The […]
The Akira ransomware strain burst onto the cybercriminal scene in early 2023 and quickly gained notoriety as a ransomware-as-a-service (RaaS) offering that has struck organizations worldwide. According to joint FBI/CISA reporting, by January 2024, Akira had impacted hundreds of victims across North America, Europe, and Australia, extorting roughly $42 million in ransom payments ic3.gov. On […]
B0 Software Group is a potentially new ransomware-as-a-service threat using RDP brute force for access and deploying Golang-based ransomware with anti-forensic features. It skips data exfiltration, targets key services, and has weak encryption. A decryptor exists due to flaws in its key reuse and insecure key handling.