A series of big-game hunting incidents and double extortion attacks carried out by Kraken, a Russian-speaking operation that has emerged from the ashes of the HelloKitty cartel, was observed in August 2025 by Cisco Talos and detailed in an advisory published recently. The group has been linked to intrusions where Server Message Block (SMB) flaws were abused for entry, followed using Cloudflare for persistence and SSH Filesystem (SSHFS) for data theft before encryption. Kraken’s toolkit spans W
hellokitty (2)
Activity Summary - Week Ending 12 February 2021:
- Red Sky Alliance observed only 75 unique email accounts compromised with Keyloggers
- Analysts identified 36,685 connections from new unique IP addresses
- 1,794 new IP addresses were collected participating in various Botnets
- Hello Kitty Malware Pussy-Footing Around Projekt RED
- Groundhog Botnet in the Cloud
- Danabot Going Wild
- Banking and Financial services in the hacker’s Cross-hairs
- Pii data of millions of people in Brazil in the Underground
- PayPal
