Credit to Author: Don Ovid Ladores| Date: Tue, 18 Apr 2023 00:00:00 +0000
This blog post analyzes a stealthy and expeditious ransomware called BabLock (aka Rorschach), which shares many characteristics with LockBit.
Read moreCredit to Author: Jon Clay| Date: Wed, 12 Apr 2023 00:00:00 +0000
Key trends and predictions you should know about
Read moreCredit to Author: David Sancho| Date: Mon, 03 Apr 2023 00:00:00 +0000
We examine three differently sized criminal groups to know how they compare to similarly sized legitimate businesses in terms of how they are organized. We also discuss how threat researchers can use their knowledge of the size and structure of a target criminal organization to aid their investigation.
Read moreCredit to Author: Trend Micro Research| Date: Thu, 30 Mar 2023 00:00:00 +0000
In late March 2023, security researchers revealed that threat actors were actively abusing a popular business communication software from 3CX.
Read moreCredit to Author: Trend Micro Research| Date: Thu, 30 Mar 2023 00:00:00 +0000
In late March 2023, security researchers revealed that threat actors were actively abusing a popular business communication software from 3CX.
Read moreCredit to Author: Jaromir Horejsi| Date: Wed, 29 Mar 2023 00:00:00 +0000
We discovered a new malware, which we named “OpcJacker” (due to its opcode configuration design and its cryptocurrency hijacking ability), that has been distributed in the wild since the second half of 2022.
Read moreCredit to Author: Vickie Su| Date: Thu, 23 Mar 2023 00:00:00 +0000
After months of investigation, we found that several undisclosed malware and interesting tools used for exfiltration purposes were being used by Earth Preta. We also observed that the threat actors were actively changing their tools, tactics, and procedures (TTPs) to bypass security solutions. In this blog entry, we will introduce and analyze the other tools and malware used by the threat actor.
Read moreCredit to Author: Ian Kenefick| Date: Mon, 13 Mar 2023 00:00:00 +0000
Following a three-month hiatus, Emotet spam activities resumed in March 2023, when a botnet known as Epoch 4 began delivering malicious documents embedded in Zip files that were attached to the emails.
Read moreCredit to Author: Vladimir Kropotov| Date: Thu, 09 Mar 2023 00:00:00 +0000
In this entry, we discuss case studies that demonstrated how data-science techniques were applied in our investigation of ransomware groups’ ransom transactions, as detailed in our joint research with Waratah Analytics, “What Decision-Makers Need to Know About Ransomware Risk.”
Read moreCredit to Author: Vladimir Kropotov| Date: Thu, 02 Mar 2023 00:00:00 +0000
In this blog entry, we present a case study that illustrates how data-science techniques can be used to gain valuable insights about ransomware groups’ targeting patterns as detailed in our research paper, “What Decision-Makers Need to Know About Ransomware Risk.”
Read more