Security Research (SR) Labs has released tools to help victims of the Black Basta ransomware recover their files. The tools target a weakness in the encryption algorithm, enabling the recovery of files between 5000 bytes and 1GB in size. The tools are only effective against the Black Basta variant used around April 2023.

Lazarus Hackers Exploiting IIS Servers to Deploy ASP-based Web Shells
The Lazarus group has launched sophisticated attacks on South Korean web servers, deploying ASP-based web shells as first-stage Command and Control (C2) servers. These attacks,