conti – Page 2 – PossibleThreat Articles

Ransomware review: July 2022

August 4, 2022 0 Comments 0mega, bianlian, blackbasta, cheers, conti, hive, july 2022, karakurt, lockbit, Ransomware, redalert, threat intelligence, yanluowang

Credit to Author: Threat Intelligence Team| Date: Thu, 04 Aug 2022 20:48:37 +0000

BlackBasta lined up behind LockBit as the second most prevalent ransomware in July, a number of new gangs appeared, and an old one reappeared

The post Ransomware review: July 2022 appeared first on Malwarebytes Labs.

MalwareBytes Security

Ransomware rolled through business defenses in Q2 2022

July 13, 2022 0 Comments black basta, Business, conti, Government, lockbit, Ransomware

Credit to Author: Marcin Kleczynski| Date: Wed, 13 Jul 2022 21:16:17 +0000

2022 is shaping up to be another banner year for ransomware, which continued to dominate the threat landscape in Q2.

The post Ransomware rolled through business defenses in Q2 2022 appeared first on Malwarebytes Labs.

MalwareBytes Security

North Korean APT targets US healthcare sector with Maui ransomware

July 10, 2022 0 Comments APT, cisa, conti, cybersecurity and infrastructure security agency, department of treasury, FBI, federal bureau of investigations, jen easterly, maui, maui ransomware, north korea, north korean apt, raas, ransom.maui, Ransomware, shione, treasury

Credit to Author: Jovi Umawing| Date: Sun, 10 Jul 2022 21:43:29 +0000

CISA warns of an unusual ransomware.

The post North Korean APT targets US healthcare sector with Maui ransomware appeared first on Malwarebytes Labs.

MalwareBytes Security

Ransomware review: June 2022

July 1, 2022 0 Comments alphv, conti, karakurt, lockbit, Ransomware, threat intelligence

Credit to Author: Threat Intelligence Team| Date: Fri, 01 Jul 2022 21:40:25 +0000

LockBit remained the most active threat in June, and “the costliest strain of ransomware ever documented” went dark while others surged.

The post Ransomware review: June 2022 appeared first on Malwarebytes Labs.

MalwareBytes Security

A week in security (June 20 – June 26)

June 27, 2022 0 Comments 311, 7-zip, A week in security, APT28, catfishing, chrome, conti, conti ransomware, cryptocurrency, cryptocurrency scam, cybersecurity emergency, DDoS, DDoS-for-hire, dfscoerce, FBI, internet safety month, LinkedIn, linkedin scam, Magecart, mark of the web, mega, ntlm relay attack, phishing, PowerShell, Ransomware, vacation cybersecurity, vacation privacy, voicemail phishing

Credit to Author: Malwarebytes Labs| Date: Mon, 27 Jun 2022 09:30:06 +0000

The most important and interesting computer security stories from the last week.

The post A week in security (June 20 – June 26) appeared first on Malwarebytes Labs.

MalwareBytes Security

Conti ransomware group’s pulse stops, but did it fake its own death?

June 23, 2022 0 Comments conti, conti ransomware, Ransomware

Credit to Author: Mark Stockley| Date: Thu, 23 Jun 2022 16:54:11 +0000

The leak site essential to the operation of Conti ransomware has disappeared, but everything may not be as it appears.

The post Conti ransomware group’s pulse stops, but did it fake its own death? appeared first on Malwarebytes Labs.

MalwareBytes Security

Conti ransomware disappears—did it fake its own death?

June 23, 2022 0 Comments conti, conti ransomware, Ransomware

Credit to Author: Mark Stockley| Date: Thu, 23 Jun 2022 16:54:11 +0000

The leak site essential to the operation of Conti ransomware has disappeared, but everything may not be as it appears.

The post Conti ransomware disappears—did it fake its own death? appeared first on Malwarebytes Labs.

MalwareBytes Security

Ransomware: May 2022 review

June 3, 2022 0 Comments conti, lockbit, may 2022, Ransomware, threat intelligence

Credit to Author: Threat Intelligence Team| Date: Fri, 03 Jun 2022 16:54:10 +0000

May 2022 saw the continued dominance of LockBit, and a possible disbursement of the Conti gang into other ransomware groups.

The post Ransomware: May 2022 review appeared first on Malwarebytes Labs.

Microsoft Security

Using Python to unearth a goldmine of threat intelligence from leaked chat logs

June 1, 2022 0 Comments conti, cybersecurity, Microsoft security intelligence, msticpy, python, threat intelligence

Credit to Author: Paul Oliveria| Date: Wed, 01 Jun 2022 18:00:00 +0000

Dealing with a great amount of data can be time consuming, thus using Python can be very powerful to help analysts sort information and extract the most relevant data for their investigation. The open-source tools library, MSTICpy, for example, is a Python tool dedicated to threat intelligence. It aims to help threat analysts acquire, enrich, analyze, and visualize data.

The post Using Python to unearth a goldmine of threat intelligence from leaked chat logs appeared first on Microsoft Security Blog.

Independent Krebs Security

Costa Rica May Be Pawn in Conti Ransomware Group’s Bid to Rebrand, Evade Sanctions

May 31, 2022 0 Comments A Little Sunshine, advintel, conti, costa rica, crprensa.com, cyberscoop, Data Breaches, data ransom, hive, Ne'er-Do-Well News, Ransomware, russia's war on ukraine, unc1756

Credit to Author: BrianKrebs| Date: Tue, 31 May 2022 19:57:58 +0000

Costa Rica’s national health service was hacked sometime earlier this morning by a Russian ransomware group known as Hive. The intrusion comes just weeks after Costa Rican President Rodrigo Chaves declared a state of emergency in response to a data ransom attack from a different Russian ransomware gang — Conti. Ransomware experts say there is good reason to believe the same cybercriminals are behind both attacks, and that Hive has been helping Conti rebrand and evade international sanctions targeting extortion payouts to cybercriminals operating in Russia.