TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 に関する「個人」の調査・研究・参照ログ

The Week in Ransomware - August 20th 2021 - Exploiting Windows


◆The Week in Ransomware - August 20th 2021 - Exploiting Windows (BleepingComputer, 2021/08/20 18:42)
[今週のランサムウェア - 21年8月20日 - Exploiting Windows]

Ransomware gangs continue to attack schools, companies, and even hospitals worldwide with little sign of letting up. Below we have tracked some of the ransomware stories that we are following this week.
Stories of particular interest revolve around new features and tactics used by some of the ransomware operations.
After analyzing the Conti training material leaked earlier this month, we learned that they use a legitimate remote access software to retain persistence on a compromised network. We also learned that they prioritize searching for cyber insurance policies and financial documents after taking control of a network.


 ◆資料・報告書 (まとめ)

◆The Week in Ransomware (まとめ)



◆New Karma ransomware (dnwls0719(Twitter), 2021/08/14)

Ransomware: Karma
拡張子: .KARMA


◆Hive ransomware attacks Memorial Health System, steals patient data (BleepingComputer, 2021/08/16 19:06)

Ransomware: Hive





◆SynAck ransomware decryptor lets victims recover files for free (BleepingComputer, 2021/08/20 14:02)

Ransomware: SynAck
攻撃組織: El_Cometa

◆LockFile ransomware uses PetitPotam attack to hijack Windows domains (BleepingComputer, 2021/08/20 15:07)

Ransomware: LockFile

Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2022