Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
RansomHub Affiliate Leverages Python-based Backdoor to Maintain Access and Deploy Encryptors
Malware and Vulnerabilities
January 17, 2025
GuidePoint Security
In an incident response in Q4 2024, GuidePoint Security identified evidence of a threat actor utilizing a Python-based backdoor to maintain access to compromised endpoints. The threat actor later leveraged this access to deploy RansomHub encryptors.
Read More
Ransomhub
RansomHub ransomware
Python backdoor
SocGholish
FakeUpdates
Publisher
Previous
Malicious PyPI Package ‘pycord-self’ Targets Discord De ...
Malware and Vulnerabilities
Next
Veeam Releases Patch for High-Risk SSRF Vulnerability C ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/b6f3_shutterstock_2166142265.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/a749_shutterstock_1938128419.jpg)
