Evil Corp is a apt_group tracked across 8 threat clusters and 10 intelligence report mentions on ThreatCluster. First observed November 19, 2025; most recent activity July 3, 2026.
On June 18, 2026, international law enforcement agencies launched Operation Endgame, disrupting the SocGholish malware infrastructure linked to the Russian cybercrime group Evil Corp. The operation resulted in the…
In August 2025, a ransomware attack attributed to Russian hackers severely disrupted Jaguar Land Rover's operations, forcing a five-week production halt and costing the UK economy approximately $2.5 billion. The attack…
The BBC podcast Cyber Hack: The Conti Files delves into the operations of the Conti ransomware gang, revealing their attacks on local councils and organizations worldwide. The series begins with a ransomware attack on…
Microsoft has mitigated a high-severity Windows LNK vulnerability, tracked as CVE-2025-9491, which has been exploited by state-backed and cybercrime groups in zero-day attacks. This flaw allows attackers to hide…
On November 19, 2025, the United States, United Kingdom, and Australia announced coordinated sanctions against the Russian web company Media Land, accusing it of facilitating ransomware operations. The sanctions include…
On October 25, 2025, the United Nations Convention against Cybercrime was opened for signature in Hanoi, Vietnam, with 72 countries signing the treaty. This treaty aims to combat cybercrime and enhance international…
A Russian-linked money laundering network purchased a controlling stake in a bank in Kyrgyzstan on Christmas Day 2024. This acquisition was part of a scheme to launder cybercrime profits and convert them into…
On Christmas Day 2024, a Russian-linked money laundering network purchased a controlling stake in a bank in Kyrgyzstan. This acquisition was part of a scheme to wash cybercrime profits and support the Russian war…