New research reveals links between Black Basta and Cactus ransomware gangs. Members from the two groups are using similar social engineering attacks, BackConnect proxy malware, and the same DNS tunneling feature found in Zloader malware. The clues point to some members migrating from defunct Black Basta to Cactus. The overlapping tactics, use of BackConnect, and other operational similarities suggest a possible rebrand or shared membership in the groups.
RadzaRat trojan deceives unsuspecting Android users – Techzine Global
RadzaRat trojan deceives unsuspecting Android users Techzine Global
