Tag : encryption

7 attack reports | 0 vulnerabilities

Attack Reports

Title Published Tags Description Number of indicators
Update: CVE-2024-4577 quickly weaponized to distribute Ransomware June 11, 2024, 10:13 a.m. The report describes an attack campaign leveraging the CVE-2024-4577 vulnerability to deliver the "TellYouThePass" ransomware. The attackers use the vulnerability to execute arbit… 5
Lost in the Fog: A New Ransomware Threat June 7, 2024, 10:34 a.m. Arctic Wolf Labs began monitoring the deployment of a new ransomware variant called Fog in early May 2024. The ransomware attacks targeted organizations in the education and recre… 5
Malicious Campaign Analysis: JScript RAT and CobaltStrike June 7, 2024, 8:59 a.m. This report examines a recent malicious campaign involving a JScript-based Remote Access Trojan (RAT) and its connections to the CobaltStrike penetration testing tool. The attack … 4
New ransomware group abusing BitLocker May 23, 2024, 2:49 p.m. The report examines an incident where threat actors leveraged Microsoft's BitLocker encryption utility to deploy unauthorized file encryption on targeted systems. The adversaries … 6
Cyberespionage Group Earth Hundun's Continuous Refinement of Waterbear and Deuterbear May 21, 2024, 11:24 a.m. This comprehensive analysis delves into the continuous evolution and refinement of sophisticated malware entities employed by a persistent cyberespionage group targeting organizat… 29
StopRansomware: Black Basta May 13, 2024, 9:31 a.m. This advisory details tactics, techniques, procedures and indicators of compromise related to Black Basta ransomware, a variant first identified in April 2022. Its affiliates have… 174
Ransomware Roundup (April 29, 2024) April 29, 2024, 6:21 p.m. This concise report provides insights into the evolving ransomware landscape, covering the KageNoHitobito and DoNex variants. It analyzes their infection vectors, victimology, att… 7