Qilin Ransomware-as-a-Service: Threat Analysis and Strategic Outlook
ID: f42b14bd-9704-5f54-b390-278dcb23edfc
STIX ID: report--f42b14bd-9704-5f54-b390-278dcb23edfc
Feed Name: BeGoodToAll
**Qilin Ransomware-as-a-Service: Threat Analysis and Strategic Outlook** — The report profiles Qilin (Agenda) as a highly professionalized RaaS that evolved from Go to Rust, deployed advanced variants (including Qilin.B), and uses sophisticated TTPs (phishing, RDP/Citrix exploitation, credential harvesting, Mimikatz, ESXi targeting) and double-extortion (encryption + data exfiltration); it details exploited CVEs (Veeam, Fortinet, VMware, etc.), major campaigns and victims, affiliate services (legal support, DDoS, PB-scale storage), detection guidance (Sigma rules), and predicts continued dominance and innovation in 2025.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.