In the recent past, federal agencies issued a warning about increased Hive ransomware activity. The CISA revealed in a new such alert that the ransomware group collected ransom payments from over a thousand businesses. Mustang Panda is back in the news as it targets multiple industries around the world. Researchers revealed in another update on ransomware threats that the transportation industry was severely impacted in the previous quarter. Continue reading to learn more.

1. An alert published by the CISA, the FBI, and the HHS states that the Hive ransomware group extorted over $100 million in ransom payments from 1,300 organizations, from June 2021 to November 2022.

2. A large-scale spear-phishing campaign by Mustang Panda APT was found targeting academic, government, research, and foundation sectors worldwide.

3. Vanuatu, a South Pacific ocean archipelago, suffered a ransomware attack that stranded the nation for 11 days. The attack took down the intranet and online databases of schools and hospitals.

4. A previously unknown ransomware, ARCrypter, was found expanding its foothold from Latin America to China, Canada, the U.S., Germany, and France.

5. New report by Trellix revealed that ransomware attacks surged 100% quarter-over-quarter in the U.S. transportation and shipping sector, in Q3 2022.

6. Akamai found an advanced phishing kit targeting North Americans since mid-September. The kit features a token-based system, ensuring that every victim is led to a unique phishing URL.

7. Phishing emails deploying QBot have resorted to abusing a DLL hijacking vulnerability in Windows 10 Control Panel, as a means to evade detection by security solutions.

8. Kaspersky detected 438,035 malicious installation packages, in Q3 2022, of which 35,060 packages were associated with mobile banking trojans and 2,310 were mobile ransomware trojans.

9. The LodaRAT malware reemerged with new strains that are being delivered alongside RedLine Stealer and Neshta. It is also being deployed by Venom RAT.

10. The Australian government’s cybersecurity minister announced plans to launch the Joint Standing Operation task force, merging domestic police and foreign intelligence resources, to disrupt international cybercrime.