Helldown Ransomware Group Tied to Zyxel's Firewall Exploits | #ransomware | #cybercrime | National Cyber Security Consulting
Tags
country: France
attack-pattern: Data Credentials - T1589.001 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID 4a244be0-6eef-4ceb-a67a-c8683de4770f
Fingerprint b431bdd39ea78238
Analysis status DONE
Considered CTI value 1
Text language
Published Nov. 20, 2024, 3:12 a.m.
Added to db Nov. 20, 2024, 4:42 a.m.
Last updated Nov. 21, 2024, 5:21 a.m.
Headline Helldown Ransomware Group Tied to Zyxel’s Firewall Exploits | #ransomware | #cybercrime
Title Helldown Ransomware Group Tied to Zyxel's Firewall Exploits | #ransomware | #cybercrime | National Cyber Security Consulting
Detected Hints/Tags/Attributes 52/2/2
Source URLs
Redirection Url
Details Source https://nationalcybersecurity.com/helldown-ransomware-group-tied-to-zyxels-firewall-exploits-ransomware-cybercrime/?utm_source=rss&utm_medium=rss&utm_campaign=helldown-ransomware-group-tied-to-zyxels-firewall-exploits-ransomware-cybercrime
Details Source https://nationalcybersecurity.com/helldown-ransomware-group-tied-to-zyxels-firewall-exploits-ransomware-cybercrime-2/?utm_source=rss&utm_medium=rss&utm_campaign=helldown-ransomware-group-tied-to-zyxels-firewall-exploits-ransomware-cybercrime-2
URL Provider
Details Provider Source level domain
Details nationalcybersecurity.com nationalcybersecurity.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 6 National Cyber Security Consulting http://nationalcybersecurity.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 20 
cve-2024-42057
Details File 2 
hellenc.exe