EternalBlue – PossibleThreat Articles

CISA issues alert with South Korean government about DPRK’s ransomware antics

February 13, 2023 0 Comments andariel, APT, cisa, conti, democratic people’s republic of korea, dprk, EK, EternalBlue, exploit kit, h0lygh0st, lazarus group, magniber, magnitude exploit kit, maui, news, north korea, plutonium, Ransomware, silent chollima, stonefly, WannaCry

Categories: News

Categories: Ransomware

Tags: CISA

Tags: ransomware

Tags: Democratic People’s Republic of Korea

Tags: DPRK

Tags: North Korea

Tags: WannaCry

Tags: EternalBlue

Tags: Lazarus Group

Tags: APT

Tags: Magniber

Tags: Magnitude exploit kit

Tags: exploit kit

Tags: EK

Tags: Andariel

Tags: Silent Chollima

Tags: Stonefly

Tags: Maui

Tags: H0lyGh0st

Tags: PLUTONIUM

Tags: Conti

The tactics of North Korean-sponsored ransomware cyberattacks against the healthcare sector and other vital infrastructure are highlighted in the latest #StopRansomware alert.

Security Sophos

How the most damaging ransomware evades IT security

November 14, 2019 0 Comments brute force, cryptoworm, EternalBlue, privilege escalation, raas, Ransomware, RDP, smb, SophosLabs Uncut

Credit to Author: Mark Loman| Date: Thu, 14 Nov 2019 13:50:28 +0000

This article is a condensed version of our report How Ransomware Behaves: What defenders should know about the top families<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/-0DnxPzSZek” height=”1″ width=”1″ alt=””/>

Security Sophos

Lemon_Duck PowerShell malware cryptojacks enterprise networks

October 1, 2019 0 Comments cryptojacking, Cryptomining, EternalBlue, fileless, lemon_duck, PowerShell, smb, SophosLabs, SophosLabs Uncut

Credit to Author: rajeshnataraj| Date: Tue, 01 Oct 2019 04:01:09 +0000

SophosLabs are monitoring a significant spike in crypto mining attacks, which spread quickly across enterprise networks. Starting from a single infection, these attacks use a variety of malicious scripts that, eventually, turn an enterprise’s large pool of CPU resources into efficient cryptocurrency mining slaves. The threat actors behind these campaigns have been using an array […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/jF91Bgk0dso” height=”1″ width=”1″ alt=””/>

Security Sophos

WannaCry – the worm that just won’t die

September 18, 2019 0 Comments epidemiology, EternalBlue, malware, Patching, Ransomware, WannaCry

Credit to Author: Naked Security writer| Date: Wed, 18 Sep 2019 12:58:52 +0000

WannaCry never went away – it just became less obvious.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/EU2F9uItjyk” height=”1″ width=”1″ alt=””/>

MalwareBytes Security