Cybercrime Groups Roasted: A New Approach to Threat Awareness

Severity: Medium (Score: 51.9)

Sources: Theregister

Summary

Cybercrime crews are often portrayed as formidable entities, but industry leaders are advocating for a shift in narrative. Former CISA head Jen Easterly and Trellix VP John Fokker emphasize that these actors are merely individuals using computers for theft, not mythical figures. In response, Trellix launched the 'Dark Web Roast,' a blog that humorously critiques cybercriminals and their tactics. Recent posts highlight a ransomware gang's questionable practices and an exploit developer's undervaluation of a critical Cisco vulnerability (CVE-2026-20045). The initiative aims to demystify cybercriminals and reduce their glamorization. The LockBit infrastructure dismantling by the UK's NCA is also referenced as a significant law enforcement action against cybercrime. This approach combines humor with serious educational content to inform organizations about the realities of cyber threats. Key Points: • Industry leaders are calling for a shift away from glamorizing cybercriminals. • The 'Dark Web Roast' blog critiques cybercriminal tactics with humor and mockery. • CVE-2026-20045 is highlighted as a critical vulnerability under active exploitation.

Key Entities

• Velvet Tempest (apt_group)
• Wizard Spider (apt_group)
• Ransomware (attack_type)
• Operation Endgame (campaign)
• Rhadamanthys (malware)
• Russia (country)
• CVE-2026-20045 (cve)
• Energy (industry)
• Cisco (company)
• Hive (ransomware_group)
• Lockbit (ransomware_group)