1. EtherRat and TukTuk Malware Chain Leads to The Gentleman Ransomware Domain-Wide Deployment via Blockchain C2 Infrastructure
A sophisticated intrusion chain observed in April 2026 demonstrates the growing sophistication of threat actors leveraging blockchain infrastructure for command-and-control (C2) operations. The attack initiated when threat actors distributed EtherRAT malware through a malicious MSI installer masquerading as a Sysintern...