Sophos MDR intercetta due campagne di ransomware che utilizzano l”email bombing” e il “vishing” di Microsoft Teams

Credit to Author: Giusy Martin| Date: Thu, 23 Jan 2025 07:13:28 +0000

Sophos MDR ha inoltre identificato un nuovo cluster di minacce che si rifà allo schema di Storm-1811 e un’attività più intensa di quella originale collegata al ransomware Black Basta

Read more

Sophos MDR tracks two ransomware campaigns using “email bombing,” Microsoft Teams “vishing”

Credit to Author: gallagherseanm| Date: Tue, 21 Jan 2025 11:30:14 +0000

Sophos MDR identifies a new threat cluster riffing on the playbook of Storm-1811, and amped-up activity from the original connected to Black Basta ransomware.

Read more

Sophos MDR blocks and tracks activity from probable Iranian state actor “MuddyWater”

Credit to Author: gallagherseanm| Date: Wed, 20 Nov 2024 17:12:12 +0000

Sophos MDR has observed a new campaign that uses targeted phishing to entice the target to download a legitimate remote machine management tool to dump credentials. We believe with moderate confidence that this activity, which we track as STAC 1171, is related to an Iranian threat actor commonly referred to as MuddyWater or TA450. Earlier […]

Read more