SecureList

MAY 12, 2021

They interact with each other through internet handles, paying for services with cryptocurrency. Hackers who are on the lookout for publicly disclosed vulnerabilities (1-days) in internet facing software, such as VPN appliances or email gateways. Access sellers. Idea #3: Cybercriminals are criminals.

Ransomware 123

Ransomware Encryption Malware Cybercrime 123

SecureList

MAY 25, 2021

Energy and Utilities (10%), Finance (10%), Professional and Consumer Services (10%), Transportation (7%), and Healthcare (7%) were also at the top of their list. Make sure commercial VPN solutions and other server-side software are always up to date as exploitation of this type of software is a common infection vector for ransomware.

Ransomware 103

Ransomware Encryption Malware Energy and Utilities 103

SecureList

APRIL 23, 2021

In certain cases, they used spear-phishing campaigns to install Cobalt Strike RAT, while other attacks involved exploiting a vulnerable internet-facing service (e.g., Citrix ADC/NetScaler or Pulse Secure VPN) or weak RDP credentials to breach the network. Maze primarily targeted businesses and large organizations.

Ransomware 97

Ransomware Mobile Malware Encryption 97