Category Archives: Threat Intelligence

Çağlar Arlı - 12 Views

12Eki

Winnti APT group docks in Sri Lanka for new campaign

Categories: Threat Intelligence

Tags: Winnti

Tags: APT

Tags: China

Tags: Sri Lanka

Tags: India

Tags: Keyplug

Tags: malware

Tags: dropbox

Tags: C2

Tags: DBoxAgent

In this research paper, we document a new campaign we attribute to the Winnti APT group. The victims are located in Sri Lanka at a point in time where the country is going through economic hardship while China makes headlines for docking on of its special vessels there.

Çağlar Arlı - 16 Views

4Eki

Ransomware review: September 2022

Categories: Threat Intelligence

In September, LockBit accounted for almost half of all known ransomware attacks.

(Read more…)

The post Ransomware review: September 2022 appeared first on Malwarebytes Labs.

Çağlar Arlı - 24 Views

8Eyl

Ransomware review: August 2022

Categories: Threat Intelligence

LockBit remained the dominant ransomware variant in August, as it has all year. At the other end of the scale REvil’s revival in slow motion continued with a single victim listed.

(Read more…)

The post Ransomware review: August 2022 appeared first on Malwarebytes Labs.

Çağlar Arlı - 23 Views

25Ağu

Exploits and TrickBot disrupt manufacturing operations

Categories: Threat Intelligence

September 2021 saw a huge spike of exploit detections against the manufacturing industry, with a distributed spread between California, Florida, Ohio, and Missouri. This is combined with heavy detections of unseen malware, identified through our AI engine, spiking in May as well as September 2021.

Çağlar Arlı - 127 Views

18Ağu

Business Services industry targeted across the country for backdoor access

Categories: Threat Intelligence

High detections of hacking tools for the Business Services industry shows that attackers likely sought to infect businesses and install backdoors for future access to their customers.

Çağlar Arlı - 30 Views

18Ağu

Attackers waited until holidays to hit US government

Categories: Threat Intelligence

In the first quarter of 2021, the US public sector dealt with heavy-hitting breaches against local, federal, and state government networks.

Çağlar Arlı - 28 Views

9Ağu

Summer of exploitation leads to healthcare under fire

Categories: News

Categories: Threat Intelligence

Tags: Healthcare

Tags: Medical

Read about trends in cyberattacks in the Healthcare and Medical industry, as well as our recommendations for helping to secure your healthcare organization.

Çağlar Arlı - 33 Views

9Ağu

Education hammered by exploits and backdoors in 2021 and 2022

Categories: News

Categories: Threat Intelligence

Tags: Education

Beyond spikes in detections, the education sector has dealt with an onslaught of attacks ranging from spyware and denial of service tools to ransomware.