https://www.wolfpackcybernetics.com/osint daily 0.75 2025-10-15 https://www.wolfpackcybernetics.com/osint/cve-2025-61882 monthly 0.5 2025-10-15 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/e26f66fa-526f-49f1-9589-42d1d030531a/image-22.png Tactical Insight - CVE-2025-61882 - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://www.wolfpackcybernetics.com/osint/cve-2023-1389 monthly 0.5 2025-05-26 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/7c5623f3-293e-4f76-a4c2-d8ad86227ce4/screen-shot-2023-06-16-at-2.09.36-pm.png Tactical Insight - CVE-2023-1389 - Make it stand out Telegram channel that was started in May 2022 to monetize the Condi botnet as a DDoS-as-a-Service https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/1dbd3f9a-1f34-484b-ad75-aaa1742a26d5/cve_2023-1389_rev_shell.gif Tactical Insight - CVE-2023-1389 - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/0e8f6359-190f-4163-b635-dfd0e4870890/cve_2023-1389_python.gif Tactical Insight - CVE-2023-1389 - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/94f347bc-4561-49b2-904d-4d5d891e2ba8/packet-analysis-tool-list.png Tactical Insight - CVE-2023-1389 - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/21d53e36-8d17-427c-b121-a5d9e14bc153/moobot.png Tactical Insight - CVE-2023-1389 - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/aa6dabcf-6cd8-4605-906b-27f46a3bab79/agoent-exec.png Tactical Insight - CVE-2023-1389 - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/9c1160c8-a725-431c-b9eb-20b230f6f181/bins_script_example.png Tactical Insight - CVE-2023-1389 - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/b141e421-76ec-4b9d-8fb9-2ebb3a33df19/miori.jpg Tactical Insight - CVE-2023-1389 - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://www.wolfpackcybernetics.com/osint/interlock-ransomware monthly 0.5 2025-05-04 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/24a96f3b-2a7b-4ae2-bb36-b49647379006/interlock-dws.jpg Tactical Insight - Interlock Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/7a8077f4-4b98-4d43-a488-f65d329022c4/Davita.png Tactical Insight - Interlock Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/98ab3881-030d-497e-9377-5d425c8dc078/extensions-chart.png Tactical Insight - Interlock Ransomware Group Multi-stage, complex delivery chain have previously involved a SystemBC remote-access trojan, custom PowerShell loaders, credential stealers and keyloggers prior to the ransomware payload Similar to other threat actors, Interlock uses double-extortion tactics: encrypting files with its custom encryptor _and_ exfiltrating sensitive data to pressure victims for payment. Cisco Talos IR notes that Interlock operates a public data leak site called **“Worldwide Secrets Blog,”** complete with links to stolen data and a victim chat portal (interlock@2mail[.]co) According to Trend Micro, the Windows encryptor will clear Windows event logs, and if self-deletion is enabled, will use a DLL to delete the main binary using rundll32.exe. The Windows version of the ransomware is developed in C/C++. A custom packer is used to store the executable in Thread Local Storage. This Windows variant leverages AES CBC encryption from the LibTomCrypt library. After the ransomware is unpacked, it enumerates logical drives other than C by cycling through A-Z, seeking out specific extensions to encrypt. However, it skips $Recycle.Bin, PerfLogs, and the file extensions in the adjacent table that would presumably degrade system functionality. The ransomware appends the `.interlock` or `.!NT3R10CK` extension to all encrypted files. A ransom note named `!___README___!.txt` is created in each affected folder. An Organization ID included in the ransom note is used for registration on the .onion site, such as `http://ebhmkoohccl45qesdbvrjqtyro2hmhkmh6vkyfyjjzfllm3ix72aqaid[.]onion` https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/5bdeb1d5-be8d-4ef1-9cd8-9936bc3986cf/interlock-thumbnail.jpg Tactical Insight - Interlock Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/ba4255e8-074c-4ae9-bd77-707b1e097ee4/interlock-negoration-site.jpg Tactical Insight - Interlock Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/c4724601-089e-49ae-b8a7-0f47b1aa75b7/interlock-home.png Tactical Insight - Interlock Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/52298f9f-2d8b-46d4-b881-f5b64aa972bf/ransom-note.jpg Tactical Insight - Interlock Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/8d3963d4-c539-4f8f-b8c9-d60ab74b083a/interlock-targets.png Tactical Insight - Interlock Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://www.wolfpackcybernetics.com/osint/alphvblackcatnoberus-ransomware-group monthly 0.5 2025-04-15 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/5102cd49-c17f-4f26-afcf-de98e2401c76/blackcat-fig-1.png Tactical Insight - ALPHV/BlackCat/Noberus Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/d0c1f30e-cb7b-4e37-803f-f2c5870007aa/blackcat.gif Tactical Insight - ALPHV/BlackCat/Noberus Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/97e5549a-b810-4c6b-b7b4-d9ba845a50c9/black-cat-thumbnail.jpg Tactical Insight - ALPHV/BlackCat/Noberus Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/38941929-744e-4ed5-b4b7-30453457cd01/BlackCat+Ransom+Note+Instruction.png Tactical Insight - ALPHV/BlackCat/Noberus Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/703593ac-647e-430e-9c19-a359ab6299f3/phishing-attack.png Tactical Insight - ALPHV/BlackCat/Noberus Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/74c78809-656c-43d6-b70c-cbcc9dca19b0/blackcat-fig-90.png Tactical Insight - ALPHV/BlackCat/Noberus Ransomware Group - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://www.wolfpackcybernetics.com/osint/lsc-data-breach monthly 0.5 2025-04-14 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/fa397056-b83e-48b6-ae51-cb4831cbac5e/data_breach.png Tactical Insight - LSC Data Breach - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://www.wolfpackcybernetics.com/osint/cybersecurity-vulnerabilities-in-medical-devices monthly 0.5 2025-03-30 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/52220a66-2568-4929-9437-6cac2691af85/medical-device-ransomware.png Tactical Insight - Cybersecurity Vulnerabilities in Medical Devices - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://www.wolfpackcybernetics.com/osint/medusa-ransomware monthly 0.5 2025-03-18 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/87b633e0-e7a5-4acd-ac09-12a9dd9af28f/netscan-example.png Tactical Insight - Medusa Ransomware - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/256b85bf-2af9-4672-96a9-99ec667cc3ca/medusa-onion.png Tactical Insight - Medusa Ransomware - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/9e59dd45-621e-4623-8d38-09de95838e96/netscan-remote-scripting.png Tactical Insight - Medusa Ransomware - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/b752ea15-927a-4b34-9879-95ad55999422/medusa-thumbnail.png Tactical Insight - Medusa Ransomware - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/66b88cd9-c31b-40d6-bf55-2959e8976da2/medusa-ransom-note.png Tactical Insight - Medusa Ransomware - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://www.wolfpackcybernetics.com/osint/espressif-esp32-undocumented-commands monthly 0.5 2025-03-11 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/44b36b63-6c22-4a87-b4ce-2c543a822237/Address_map.JPG Tactical Insight - Espressif ESP32 Undocumented Commands - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/3a7c01be-6eb5-4c90-8e1a-d2a33281827e/esp32-mmap.png Tactical Insight - Espressif ESP32 Undocumented Commands - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://www.wolfpackcybernetics.com/osint/ransomware-group-raworld monthly 0.5 2025-02-18 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/adb46a00-6602-4e2a-a467-2be79ca38848/RA_WORLD_WITH_BG.jpg Tactical Insight - Ransom Group : RA World Who: RA World. This organization is suspected to be rebranded from RA Group based on their usage of the same extortion and encryption techniques. What: Ransomware group that targets businesses in healthcare, finance, and manufacturing. When: Emerged in April 2023. Last observed attack occurred in July 2024. Where: This group has mostly focused their efforts on the United States, although gradually increasing its scope of attacks across South America, Europe and Southeast Asia. Why: Primary motive is financial, which aligns with their historical targeting of organizations that are capable of paying high ransoms. This group has been involved with several espionage attacks as well. https://www.wolfpackcybernetics.com/osint/ransomware-group-apt41 monthly 0.5 2025-02-18 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/a803690a-c6a6-4c77-a4d2-9a28cc633cb5/APT_41_ICON.jpg Tactical Insight - Advanced Persistent Threat : Double Dragon (APT 41) Who: Nation State Advanced Persistent Threat (APT). APT also goes by Barium, Winnti and Bronze Typhoon. What: Chinese state-sponsored threat group engaging in both cybercrime and espionage. Their primary objectives include gathering intelligence for economic advantage and stealing intellectual property. When: Last observed in August 27, 2024. Where: Group targets Healthcare, Government, Manufacturing and Financial institutions in North America, Europe and Asia. Why: Primary motive is financial and espionage. https://www.wolfpackcybernetics.com/osint/ransomware-group-blacksuit monthly 0.5 2025-01-11 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/7aabfaea-c04b-477b-aa1f-7aebbdcb05ce/DALL_E_2024-11-19_07.55.25_-_A_simple_playing_card_featuring_the_Ace_of_Spades_with_a_minimalist_design._The_card_shows_a_hooded_figure_in_a_black_suit__with_subtle_smoke_and_shad-removebg.png Tactical Insight - Ransom Group: BlackSuit (Royal) Who: Ransomware group What: Uses advanced techniques and double extortion against victims When: Last observed in August 27, 2024 Where: Group targets Healthcare, Government, Manufacturing and Financial Services in Europe and the United States. Why: Primary motive is financial gain https://www.wolfpackcybernetics.com/osint/blog-post-title-one-5wp4y monthly 0.5 2024-11-19 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/7f44a32a-e7a1-4b1b-88f6-11a560bb4d90/ISO_27001.png Tactical Insight - Cyber Security Governance - Make it stand out Whatever it is, the way you tell your story online can make all the difference. https://www.wolfpackcybernetics.com/osint/ransomware-group-embargo monthly 0.5 2024-11-19 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/75195eaf-6710-4236-8a8d-a56d29329d71/enhanced_logo_image.png Tactical Insight - Ransom Group: Embargo Who: Ransomware group What: Uses advanced techniques and double extortion against victims When: Last observed in November 2024 Where: Group targets medical practices in the U.S but has capability to target outside typical victim Why: Primary motive is financial gain https://www.wolfpackcybernetics.com/home daily 1.0 2025-12-04 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/7cc5ca61-0c69-4492-be44-a13f42c052c2/LOGO_WITHOUT_BACKGROUND.png https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/b5eb5b16-5454-4461-8b4b-4436c00bb736/ChatGPT+Image+Nov+17%2C+2025%2C+09_12_37+PM.png https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/efb424dd-cdac-456b-bfda-0ab72cd4879a/ChatGPT+Image+Nov+17%2C+2025%2C+08_17_32+PM.png https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/9d5b80ba-2b7a-4f14-b6d3-e922124bdc4f/ChatGPT+Image+Nov+17%2C+2025%2C+09_36_06+PM.png https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/e8f2b242-c443-4575-a7ea-87b310b902af/DALL%C2%B7E+2025-10-05+23.35.33+-+An+abstract+visualization+of+digital+software+represented+through+geometric+shapes%2C+data+streams%2C+and+light+patterns.+Flowing+lines%2C+grids%2C+and+code-l.webp https://www.wolfpackcybernetics.com/about daily 0.75 2025-11-21 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/707df638-96c3-4930-a1c1-da5842d04c94/north-carolina-890632_1280.png https://www.wolfpackcybernetics.com/contact daily 0.75 2025-11-21 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/0f983277-57ca-4b62-9478-5268e923049c/DALL%C2%B7E+2024-08-04+14.29.03+-+A+professional+and+modern+image+that+merges+the+concept+of+a+secure+digital+environment+with+the+essence+of+a+strong+brand+identity.+The+image+feature.jpg https://www.wolfpackcybernetics.com/services-2-2 daily 0.75 2025-11-21 https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/4760af2b-4900-4c1b-aa30-d36e900933b8/ChatGPT+Image+Nov+17%2C+2025%2C+08_17_32+PM.png Cyber Security https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/653fe479-fa74-4a4d-8872-40b5e39fe6f3/ChatGPT+Image+Nov+17%2C+2025%2C+09_12_37+PM.png Cyber Security https://images.squarespace-cdn.com/content/v1/66a5a4a8595c5341fd1d5f81/80737f1d-8845-496e-89ee-f597cbdbf154/ChatGPT+Image+Nov+17%2C+2025%2C+09_36_06+PM.png Cyber Security