: Hellcat frequently leaks compressed datasets as "proof of breach." For example, they claimed a 40GB compressed breach of Schneider Electric .
: Given Hellcat's reliance on Jira, organizations should audit Atlassian Jira accounts for unusual login activity. pdhellcat.rar
: Rar files from threat groups often contain nested malicious scripts or "bombs" designed to compromise the host system. : Hellcat frequently leaks compressed datasets as "proof