Hive0163 Uses AI-Assisted Slopoly Malware in Ransomware Attacks

Financially motivated threat actor Hive0163 deploys AI-assisted malware named Slopoly in ransomware attacks for persistent access. The PowerShell backdoor shows signs of LLM assistance and is used alongside NodeSnake, Interlock RAT, and Interlock ransomware. This incident highlights the evolving threat landscape and the sophisticated tactics employed by modern threat actors. Organizations should review their security posture, ensure all systems are patched, implement defense-in-depth strategies, and monitor for indicators of compromise. Source: The Hacker News