RAKESH KRISHNAN

Sharing latest Research Article on CVE-2025–53770 #SharePoint #ToolShell #exploit #vulnerability theravenfile.com/2025/07/22/cve… #CVE202553770 #microsoft #cve #darkweb #OSINT #hack #infosec #security #threatintel #threatintelligence #cyberattack #ransomware #malware #infosec #vuln

Just finished my Initial Analysis on #Medusa #Ransomware Leak from #RansomedVC Group this morning!!! :-) theravenfile.com/2025/07/10/med… @BleepinComputer @TheHackersNews #hack #darkweb #deepweb #infosecurity #cybersecurity #threatintelligence #threatintel #netsec #TOR #exploit

#Everest #Ransomware is back with next big claim, adding #CocaCola to their Victim List! Upon checking, UAE 🇦🇪 Division of Coca-Cola has been affected! Acc. to Hudson Rock, there are 3 party credentials exposed! #infosec #security #OSINT #malware #threatintel @BleepinComputer

🚨#BlackByte #Ransomware back after 10 Months listing 5 Victims🔎! …4ot3tikhjsimurtcewqssgye6vvrhqd.onion Exposed IP: 193.201.9.222:443 🇷🇺 💡Same ASN used previously! #malware #threatintel #security #data #infosec #darkweb #malware #TOR #FBI #CISA #hack @fofabot x.com/RakeshKrish12/…

💡Some Groups like #Devman adds same victim multiple times on their #Dataleak; resulting in fake #Victims, crawled by many projects! Also X-Claims from other groups like #lockbit, #ElDorado & #lynx groups! #infosec #security #hack #darkweb #OSINT #threatintel #cybersecurity

🚨#RANSOMEDVC #Ransomware is back for "N"th time!😄 ransomed[.]biz Reg.:4th May 2025 IP: 213.111.149.87 🇺🇦 66.63.187.65 185.254.197.169 More IOCs on my Git: github.com/TheRavenFile/D… #infosec #malware #darkweb #security #cybersecurity #cybersec #OSINT #network #hack #threatintel

#Nitrogen #Ransomware significantly dropped their deliverable executable file-size from 14 MB to 93 KB!🤯 You may find details on my git:- github.com/TheRavenFile/D… #security #infosec #OSINT #darkweb #malware #deepweb #threatintel #threatintelligence #network #TOR #raas #netsec

#NightSpire #Ransomware 70 Victims/111 Days!🔥 Found 5 Samples! ☢️MD5 e2d7d65a347b3638f81939192294eb13 2bf543faf679a374af5fc4848eea5a98 🔍Intel ➡️: github.com/TheRavenFile/D… #malware #security #infosec #hack #darkweb #deepweb #threatintel #threatintelligence #OSINT #TOR #cyber

#Kawalocker aka #kawa4096 #Ransomware spotted! #Akira themed DLS! DLS: …6z2hnwaoi3h5aeosupozkddqwp6lqqd.onion Files: …ucwxnjpxcxpfh2vjfx7drj66pnwl3ad.onion MD5: c3ce46d40b2893e30bf00fce72c2e1fa Mutex: SAY_HI_2025 More info: github.com/TheRavenFile/D… #malware #darkweb #hack #security #infosec #OSINT #TOR

#StarkIndustries #Bulletproofhosting Server About 1676 Malicious IPs found #Netherlands tops the list followed by #Moldova, #US, #Bulgaria and many more! #infosec #security #hack #OSINT #darkweb #ransomware #as44477 #threatintel #threatintelligence #hack #malware #TOR

#BERT #Ransomware mostly focused on #Windows Environment. 6 EXE 🪟&🐧2 ELF files! Also found the PS Script which is used to disarm the defense system! Here is the complete report:- theravenfile.com/2025/06/16/ber… #darkweb #threatintel #malware #security #infosec #hack #OSINT #tor

💡When #infostealers gets re-used; sometimes they only reflect changes in name! But #config remains intact! Here a use-case where X-Special-Header remains the same github.com/TheRavenFile/D… #threatintel #OSINT #security #infosec #cybersecurity #malware #powershell #ransomware

Here is the sample for #Global #Ransomware with 9 victims! MD5: 4e01e0eca4d82cbadc70b754a4f9fd3c DLS: …uvgx6imegb73hqny2avxccnmqt5m2id.onion More: github.com/TheRavenFile/D… #malware #security #infosec #hack #blacklock #OSINT #darkweb #threatintel #threatintelligence #cybersecurity #cybersec

Found 2 Samples of #Datacarry #Ransomware with Ransom Note, targets🇪🇺! MD5 d86163423afa32bb0b793ad909d6b357 34d8f42e67a6ae938554cb98f939b759 …4lxljytnpvberrwgj2vlvunopd46dad.onion Asks 2BTC to all victim😂 More: github.com/TheRavenFile/D… #infosec #security #malware #darkweb #deepweb #OSINT

#Nitrogen #Ransomware started to infect #Linux systems as a new variant spotted🔎 MD5: f65a194814d4e0b8fdcf74f523e06ddf DLS: …jvmsz7ciljoqxxknd7uymkfetfhgvqd.onion #infosec #malware #OSINT #security #darkweb #deepweb #hack #threatintel #threatintelligence #netsec #raas #databreach #dataleak

🚨#APT41 🇨🇳New IOCs uncovered related to #Calender Campaign! 2 New Samples of #Toughprogress found MD5 d54187089a44e825d6a0e8e3793d5516 4a06c0e6bc28b1b7e6b29a76664c413b More: github.com/TheRavenFile/T… #OSINT #threatintel #security #infosec #hack #malware #darkweb #deepweb

#BRUTEFORCING should not be UNDERRATED!!! This is the Response of #safepay #ransomware about the infiltration into a 🇩🇪 Company! Weak #Password: 123456 Dear IT Admins! Beware about this! #darkweb #security #infosec #OSINT #cybersecurity #cybersec #threatintel #DeepWeb

#Lummastealer still active after #FBI Crackdown?😲 Check out my latest Research Article! 😎 theravenfile.com/2025/05/23/lum… #lumma #lummac2 #infostealer #ransomware #security #infosec #darkweb #deepweb #telegram #threatintel #threatintelligence #OSINT #network #CISA #US #europol #TOR

🚨#DEVMAN #RANSOMWARE: IP EXPOSED 📍38.132.122.213 🇺🇸 📍38.132.122.214 🇺🇸 #AS9009🇷🇴 …atymo6hntficb4rhq5n76kuogcv7zyd.onion Linked: x.com/RakeshKrish12/… More: github.com/TheRavenFile/I… #infosec #OSINT #hack #security #malware #TOR #phishing #netsec #threatintel #threatintelligence #badip

🚨Found new infra of #Mamona #Ransomware, switched from 🇷🇺! New IP: 193.239.86.204 Server: nginx/1.24.0 (Ubuntu) Old: 185.158.113.114 💡#BlackLock advertised "MamonaRIP" on their DLS! More: github.com/TheRavenFile/I… @ValidinLLC #malware #security #infosec #OSINT #darkweb #TOR