RU against the Machine: The failures of machine translation for analysing Russian-language forums
Introduction Russian slang such as ‘fenya’ and ‘mat’ and cybercriminal-specific dialect is used throughout hidden services, especially on forums….
From Initial Access to Ransomware Attack: An Analysis of Timelines from IAB Listings on Cybercriminal Forums to Extortion Attacks
Introduction Cyjax monitors and analyses the initial access broker (IAB) market on the most prominent cybercriminal forums. As noted in
Is that Ra? Nope, it is RaaS – DLS emerges for New Extortion Group Anubis
Introduction In 2024, Cyjax observed the emergence of 72 extortion and ransomware group data-leak sites (DLSs). As of
Is that Ra? Nope, it is RaaS – DLS emerges for New Extortion Group Anubis Read More »
Stealer Malware and Stealer Logs Explained
Stealer logs and the infostealers that harvest them form a key part of the threat landscape and cybercriminal
Stealer Malware and Stealer Logs Explained Read More »
Take Me Down to Funksec Town: Funksec Ransomware DLS Emergence
Take Me Down to Funksec Town: Funksec Ransomware DLS Emergence Cyjax has continued to observe the emergence of
Take Me Down to Funksec Town: Funksec Ransomware DLS Emergence Read More »
ContFRaversy in Ransomland: Tor-based site emerges for new French-speaking RaaS operation “ContFR”
Following the emergence of data-leak sites (DLSs) for extortion groups Kairos, Chort, and Termite, Cyjax has observed the
Kairos extortion group turns to initial access brokers
Cyjax recently identified a new financially-motivated extortion group going by the name Kairos, which shares data stolen from
Kairos extortion group turns to initial access brokers Read More »
T(AI)WANted: How the global surge in AI likely caused an increase in Taiwan-targeted cybercrime
Introduction Initial access brokers (IABs) facilitate access for ransomware groups, data brokers, and advanced persistent threat groups (APTs)
Data-leak site emergence continues to increase
Introduction As the threat landscape continues to develop, ransomware and data brokerage groups constantly emerge, develop, and disband.
Data-leak site emergence continues to increase Read More »