Threat Intelligence Archives - Arab Security Consultants

Researchers Uncover Batavia Windows Spyware Stealing Documents from Russian Firms

Tuesday, 08 July 2025 by Ayman Hamam

Russian organizations have been targeted as part of an ongoing campaign that delivers a previously undocumented Windows spyware called Batavia. The activity, per cybersecurity vendor Kaspersky, has been active since July 2024. “The targeted attack begins with bait emails containing malicious links, sent under the pretext of signing a contract,” the Russian company said. “The main

Published in News

Tagged under: ASC, Batavia spyware, cyberSecurity, data exfiltration, Fortinet, Kaspersky, Malware attacks, NordDragonScan, Phishing emails, Russian cyber threats, spyware, Threat Intelligence, Windows malware

FIN7, FIN8, and Others Use Ragnar Loader for Persistent Access and Ransomware Operations

Tuesday, 11 March 2025 by Ayman Hamam

Threat hunters have shed light on a “sophisticated and evolving malware toolkit” called Ragnar Loader that’s used by various cybercrime and ransomware groups like Ragnar Locker (aka Monstrous Mantis), FIN7, FIN8, and Ruthless Mantis (ex-REvil). “Ragnar Loader plays a key role in keeping access to compromised systems, helping attackers stay in networks for long-term operations,” Swiss cybersecurity company PRODAFT

Published in News

Tagged under: ASC, Cyber Threats, cyberSecurity, ethical hacking, FIN7, FIN8, InfoSec, Malware, Ragnar Loader, Ragnar Locker, Ransomware, Threat Hunting, Threat Intelligence

Tag: Threat Intelligence

Researchers Uncover Batavia Windows Spyware Stealing Documents from Russian Firms

FIN7, FIN8, and Others Use Ragnar Loader for Persistent Access and Ransomware Operations