What is the prevailing form of malware used by attackers for illicit gain and to cause disruption ?

The prevailing form of malware used by attackers for illicit gain and to cause disruption is constantly evolving, reflecting the dynamic nature of cyber threats. However, in recent years one of the most common forms of malware is ransomware. Question is, what is ransomware? Actually, ransomware is a type of malicious software that encrypts a … Read more

Anatomy of a Yara rule – identify a Malware, by Thomas Roccia

Anatomy of a Yara rule – identify a Malware, by Thomas Roccia YARA rules are a way of identifying malware (or other files) by creating rules that look for certain characteristics. YARA was originally developed by Victor Alvarez of VirusTotal and is mainly used in malware research and detection. It was developed with the idea … Read more

If you are a bit familiar with Egregor, Maze or Ruyk and other major ransomware, you should read Analyst1’s paper, by Jon DiMaggio.

In February 2021, Ukraine men were arrested for supporting the long-standing ransomware gang known as ”Twisted Spider”. The gang, first seen in May 2019, is behind high-dollar enterprise ransomware attacks. However, the arrests had little impact and operations continued in March 2021. In June 2020, the gang issued a press release claiming they joined forces … Read more