Fully Undetected Anubis Malware Enables Hackers to Execute Remote Commands - #Anubis
The cybersecurity landscape has witnessed the emergence and evolution of various Anubis-related threats from 2021 to 2025. Initially, Anubis targeted Android devices, impersonating apps to steal financial credentials. By 2025, a new ransomware group named Anubis emerged as a sophisticated Ransomware-as-a-Service (RaaS) operation, targeting multiple platforms including Windows, Linux, NAS, and ESXi. This group employs double extortion tactics, offers various affiliate programs, and focuses on critical industries such as healthcare. Concurrently, the Savage Ladybug group, associated with FIN7, developed AnubisBackdoor, a Python-based malware designed for remote access and data exfiltration. These developments highlight the dynamic nature of cyber threats and the continuous adaptation of cybercriminal groups to evade detection and maximize their impact.