【概要】
| 項目 | 内容 |
|---|---|
| 拡張子 | .DEMON |
| ランサムノート | decrypt_file.TxT ReadMe.txt |
【ニュース】
◆Black Kingdom ransomware hacks networks with Pulse VPN flaws (BleepingComputer, 2020/06/13)
https://www.bleepingcomputer.com/news/security/black-kingdom-ransomware-hacks-networks-with-pulse-vpn-flaws/
⇒ https://malware-log.hatenablog.com/entry/2020/06/13/000000_4
◆Black Kingdom ransomware operators exploit Pulse VPN flaws (Cyber Defense Magazine, 2020/06/18)
https://www.cyberdefensemagazine.com/black-kingdom-ransomware-operators-exploit-pulse-vpn-flaws/
⇒ https://malware-log.hatenablog.com/entry/2020/06/18/000000_6
◆Microsoft Exchange servers now targeted by Black Kingdom ransomware (BleepingComputer, 2021/03/22 09:07)
[Microsoft ExchangeサーバがBlack Kingdomランサムウェアの標的に]Ransomware: Black Kingdom
ランサムノート: decrypt_file.TxT, ReadMe.txthttps://www.bleepingcomputer.com/news/security/microsoft-exchange-servers-now-targeted-by-black-kingdom-ransomware/
⇒ https://malware-log.hatenablog.com/entry/2021/03/22/000000_4
◆Black Kingdom Ransomware Hunting Unpatched Microsoft Exchange Servers (The hacker News, 2021/03/25)
[Black Kingdomランサムウェアがパッチを当てていないMicrosoft Exchangeサーバーを狩る]
https://thehackernews.com/2021/03/black-kingdom-ransomware-hunting.html
⇒ https://malware-log.hatenablog.com/entry/2021/03/25/000000_5
◆Microsoft: Black Kingdom ransomware hacked 1.5K Exchange servers (BleepingComputer, 2021/03/26 12:03)
[マイクロソフト: ランサムウェア「Black Kingdom」が1.5KのExchangeサーバをハッキング]
https://www.bleepingcomputer.com/news/security/microsoft-black-kingdom-ransomware-hacked-15k-exchange-servers/
⇒ https://malware-log.hatenablog.com/entry/2021/03/26/000000_3
【ブログ】
◆Black Kingdom ransomware begins appearing on Exchange servers (Sophos, 2021/03/23)
https://news.sophos.com/en-us/2021/03/23/black-kingdom/
⇒ https://malware-log.hatenablog.com/entry/2021/03/23/000000_5
【図表】
【関連まとめ記事】
◆ランサムウェア (まとめ)
https://malware-log.hatenablog.com/entry/Ransomware
