Latest Posts

ClickFix Chaos: A Deep Dive into Rhadamanthys Infostealer’s Stealth and Steal Tactics

09 Jul 2025

DarkAtlas Squad
Investigation

ClickFix Chaos: A Deep Dive into Rhadamanthys Infostealer’s Stealth and Steal Tactics

While hunting for phishing domains, I came across this suspicious domain: hxxps://ypp-studio[.]com. It appears to be a phishing domain. Let’s conduct a thorough technical analysis to uncover more details and potential indicators of compromise (IOCs). So, let’s see what the Content of this Command is Enhanced Version: Explanation of Enhancements: The Script Contains: # 1. Random […]

DragonForce Ransomware: From Hacktivism to Global Cyber Extortion

29 Jun 2025

Dark Atlas
DarkAtlas Squad

DragonForce Ransomware: From Hacktivism to Global Cyber Extortion

DragonForce Ransomware emerged in 2023 as a formidable threat within the cybercriminal landscape, operating under a Ransomware-as-a-Service (RaaS) model. Initially, the group—also named DragonForce—made headlines through ideologically driven cyberattacks, strategically targeting organizations whose values opposed their political stance. However, the group has since evolved, shifting toward financially motivated operations and establishing itself as a key […]

Bluenoroff (APT38) Live Infrastructure Hunting

23 Jun 2025

Kimsuky
OPSEC Failure

Bluenoroff (APT38) Live Infrastructure Hunting

North Korean threat actor designations often exhibit significant overlap, making attribution complex. As a result, some security researchers collectively refer to all North Korean state-sponsored cyber operations under the umbrella of the Lazarus Group, rather than tracking individual clusters or subgroups such as Andariel, APT38 (Bluenoroff), and APT43 (Kimsuky). Among these, Bluenoroff—also known as APT38—is […]

Categories

Discover the latest articles and insights on Dark Atlas

All
Threat Intelligence
Malware Analysis
Uncategorized
Infrastructure adversary hunting
Image placeholder

Image placeholder

Image placeholder

Image placeholder

Image placeholder

Image placeholder

Image placeholder

Image placeholder

Image placeholder

Contact Us

Experience the power of #1 AI-Powered eXtended Cyber Intelligence Platform

Subscribe

New Security Updates Weekly!