Due to the evolving and growing impact of cybersecurity incidents there are some questions starting to arise about the way that…
Tag: attribution
Analysts “strongly believe” the Russian state colludes with ransomware gangs
“We have the smoke, the smell of gunpowder and a bullet casing. But we do not have the gun to link…
The forgotten domain: Exploring a link between Magecart Group 5 and the Carbanak APT
This blog post was authored by Jérôme Segura, William Tsing, and Adam Thomas. In a previous post, we described the possible…
Ryuk ransomware attacks businesses over the holidays
While families gathered for food and merriment on Christmas Eve, most businesses slumbered. Nothing was stirring, not even a mouse—or so…
All this EternalPetya stuff makes me WannaCry
Another week goes by and yet again we have another ransomware outbreak initially dropped by a malicious software update and eventually…
EternalPetya – yet another stolen piece in the package?
Since June 27th we have been investigating the outbreak of the new Petya-like malware armed with an infector similar to WannaCry. Since day one,…
A week in security (Nov 27 – Dec 03)
Last week, we commented on Gooligan, homed in on a fake WhatsApp phishing email, and discussed about a rogue Chrome extension…
Attribution Part II: Don’t overthink it
Last time, we took a look at a few common mistakes that are easy to make when trying to attribute cyber…
A week in security (Oct 23 – Oct 29)
Last week, we wrote a detailed profile of Trick Bot, which we believe to be the successor of the known information…
Attribution, and when you should care: Part 1
It’s not China. Unless it is. Or maybe it’s a 400 lb hacker in their basement. Unlikely. Who can tell who…