March 2026 Ransomware Trends Report
Purpose and Scope. this report summarizes the number of ransomware samples, number of affected systems, DLS-based statistics, and major Korean & Global ransomware issues identified during the month of March 2026. Key statistics. ransomware sample counts and victimized systems statistics were aggregated by detection name assigned by AhnLab. statistics on
April 12, 2026
April 12, 2026 Hash 17e7ae6cefaddfb2978e58e5960510c90 28621c9489fdd1c7e6ebef48cda0b51cd 3adee74d821ebaa092dc1c8a40dba54d9 URL 1http[:]//112[.]113[.]129[.]64/ 2http[:]//222[.]220[.]145[.]217/ 3https[:]//www[.]mnsancarlos[.]com[.]mx/ IP 1172[.]210[.]249[.]152 2120[.]48[.]32[.]130 3109[.]206[.]241[.]199...
April 11, 2026
April 11, 2026 Hash 19d3083efc3f802dc520fd7cba2b2cbb0 2c7dc9ff1e1491a4c83c2f0b084a208ba 3f95b2da5cf104428cd202c7159683daf URL 1http[:]//kx5official[.]com/ 2https[:]//denegnet[.]click/ 3http[:]//lungingunified[.]com/ IP 1197[.]199[.]224[.]52 2106[.]75[.]222[.]164 374[.]94[.]234[.]151...
April 10, 2026
April 10, 2026 Hash 1775a45a53c4b17ee1580c16b07013a19 248607771fe87402b3f747f08b8e8efa2 35cc2134e19e1370d3f2ae088e92b2f58 URL 1https[:]//app99[.]mgea12o[.]cfd/ 2http[:]//101[.]55[.]21[.]56/ 3http[:]//serenity[.]com[.]es/ IP 192[.]118[.]39[.]76 2189[.]8[.]5[.]118 3187[.]251[.]123[.]104...
Q1 2026 Attack Technique Trends Report
overview The cyber attack landscape in Q1 2026 was characterized by a step change from traditional mass-automated threats, with accelerated penetration rates driven by the use of AI, identity-centric attacks, exploitation of supply chain and SaaS linkages, and a combination of social engineering and vulnerability exploitation. threat actors are no
LOLBins – Analysis of MSBuild-Based Attack Techniques
Overview In recent years, cyber threat actors have consistently attempted to exploit living off the land binaries (LOLBins) built into systems to bypass detection by security products. Such attack methods effectively evade traditional signature-based detection by not distributing a separate malicious file, but instead relying on tools trusted by the
March 2026 Infostealer Trend Report
Description. this report analyzes Infostealer distribution trends and cases collected during the month of March 2026. It is based on data collected through ASEC’s automated collection and analysis system and ATIP’s real-time IOC service. Purpose and Scope. the purpose of the analysis is to identify trends in the volume, distribution
ManageEngine (Exchange Reporter Plus, Exchange Reporter Plus, and others) Family April 2026 Security Update Advisory
overview Zoho(https://www.zohocorp.com/) has released a security update that addresses a vulnerability in its ManageEngine suite of products. users of affected products are advised to update to the latest version. affected products Exchange Reporter Plus builds 5801 and earlier resolved Vulnerabilities High Impact Cross-Site Scripting (XSS) vulnerability in Exchange Reporter Plus
Ransom & Dark Web Issues Week 2, April 2026
ASEC Blog publishes Ransom & Dark Web Issues Week 2, April 2026 Emergence of New Ransomware Group ‘KryBit’ Gunra, Ransomware Attack Targeting South Korean Pharmaceutical Company DragonForce, Ransomware Attack Targeting Egyptian Generic Drug Developer and Manufacturer
OpenClaw Product Security Update Advisory
Overview. Multiple security vulnerabilities have been disclosed and security updates have been released in the OpenClaw suite. Vulnerability Details. vulnerability types include authentication bypass, execution allowlist bypass, command execution-command injection, remote code execution (RCE), privilege escalation, access control bypass, sandbox escape, information leakage, etc. Impact and Risk. affected includes the
