CyberProof A.I CyberSecurity Scoring
CyberProof
Company Information
Website:https://www.cyberproof.com/
Employees number:413
Number of followers:42,026
NAICS:541514
Industry Type:Computer and Network Security
Homepage:cyberproof.com
CyberProof Risk Score (AI oriented)
Between 650 and 699
CyberProofComputer and Network Security
Updated:
28/03/2026
28/03/2026
685/1000
Weak
B
CyberProof Global Score (TPRM)
xxxx
CyberProofComputer and Network Security
Score locked

CyberProofWeak
Current Score
685B (WEAK)
01000
2 incidents
-5 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
689
JUNE 2026
689
MAY 2026
686
APRIL 2026
685
MARCH 2026
685
FEBRUARY 2026
683
JANUARY 2026
685
Vulnerability
05 Jan 2026 • CyberProof
LogMeIn, PayPal, CyberProof and AnyDesk: Hackers Use Fake PayPal Notices to Steal Credentials, Deploy RMMs
Phishing-Led Intrusions Abusing Legitimate RMM Tools via Fake PayPal Alerts
680
LOW-5
GOTPAYCYBANY1768408080
New Phishing Campaign Exploits Fake PayPal Alerts to Hijack RMM Tools
A recent surge in phishing attacks is leveraging fake PayPal alerts to compromise both personal and corporate systems through legitimate remote monitoring and management (RMM) tools. CyberProof’s advisory, published on Tuesday, details a shift from seasonal lures such as holiday invites or tax notices to high-urgency financial scams designed to prompt immediate action.
Researchers analyzed six incidents across customer environments, including one case where an employee’s personal PayPal account became the initial entry point. On January 5, 2026, CyberProof’s Managed Detection and Response (MDR) team detected suspicious activity that later escalated into corporate access. The attack began with a fraudulent PayPal email, followed by phone-based social engineering. Posing as support staff, the attacker convinced the victim to install LogMeIn Rescue, later switching to AnyDesk to maintain persistence all without triggering endpoint detection and response (EDR) alerts.
The attackers employed a tactic of using one RMM tool to install another, a method also observed in recent Broadcom research. This redundancy may help evade detection and exploit trial licenses before they expire. Artifacts from the attacks included multiple LogMeIn Rescue binaries and evidence of active remote sessions. Persistence was achieved through a scheduled task and a disguised startup shortcut, mimicking legitimate system activity.
While the immediate goal appears financial, CyberProof warned that such access could be sold to advanced persistent threat (APT) groups, leading to full corporate compromise or ransomware deployment. The firm highlighted the risks of RMM tool abuse and the need for stronger phishing controls, restricted network access to common RMM ports, and the avoidance of exposed remote services like RDP.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
DECEMBER 2025
685
NOVEMBER 2025
684
OCTOBER 2025
682
SEPTEMBER 2025
681
AUGUST 2025
679
FEBRUARY 2024
754
Ransomware
01 Feb 2024 • CyberProof
RansomHub
RansomHub Takeover by DragonForce
645
CRITICAL-109
CYB758040225
RansomHub, once the largest and most formidable ransomware group, witnessed a potentially critical blow to its infrastructure when the rival entity, DragonForce, claimed takeover. Speculations arose after RansomHub's official onion site went offline on March 31. The unexpected disruption and DragonForce's claims of a new partnership align with a shift in the ransomware underworld's power dynamics. Details are murky, but the event indicates a pivotal moment for RansomHub, which had maintained its dominance since February 2024 through transparency, reliable payouts, and effective attack strategies for its affiliates. The incident has sowed uncertainty regarding the future of RansomHub's operations and its sustained influence in the volatile landscape of cyber threats.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for CyberProof ??
What was CyberProof's A.I Rankiteo Cyber Score in June 2026 ??
What was CyberProof's A.I Rankiteo Cyber Score in May 2026 ??
What was CyberProof's A.I Rankiteo Cyber Score in April 2026 ??
What was CyberProof's A.I Rankiteo Cyber Score in March 2026 ??
What was CyberProof's A.I Rankiteo Cyber Score in February 2026 ??
What was CyberProof's A.I Rankiteo Cyber Score in January 2026 ??
What was CyberProof's A.I Rankiteo Cyber Score in December 2025 ??
What was CyberProof's A.I Rankiteo Cyber Score in November 2025 ??
What was CyberProof's A.I Rankiteo Cyber Score in October 2025 ??
What was CyberProof's A.I Rankiteo Cyber Score in September 2025 ??
What was CyberProof's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on CyberProof's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with CyberProof ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view CyberProof's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?