Ransomware gangs just got a speed boost – and it’s bad news for your SOC.

HeartCrypt’s “Packer-as-a-Service” is basically DoorDash for malware: pay the fee, get your payloads wrapped in next-gen obfuscation that laughs at static/dynamic analysis…
HeartCrypt’s “Packer-as-a-Service” is basically DoorDash for malware: pay the fee, get your payloads wrapped in next-gen obfuscation that laughs at static/dynamic analysis…
Russian-linked RomCom is abusing a critical WinRAR bug to quietly persist in networks, move laterally, and siphon data over encrypted channels — hitting government, finance, and telecom sectors hard. Patch lag is keeping doors wide open.
DarkWatchMan is a fileless, modular malware family first observed in late 2021 and attributed to the financially motivated Hive0117 group. The malware is primarily delivered via spear-phishing emails containing password-protected archives, targeting Russian critical infrastructure (energy, etc).