TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 / 攻撃組織 に関する「個人」の調査・研究・参照ログ

HelloKitty (まとめ)

vul.hatenadiary.com

【HelloKitty】

◆HelloGookie (まとめ)
https://malware-log.hatenablog.com/entry/HelloGookie


【辞書】

◆DeathRansom (Malpedia)
https://malpedia.caad.fkie.fraunhofer.de/details/win.deathransom


【別名】

攻撃組織名
命名組織
DeathRansom
FiveHands
HelloKitty
UNC2447 Mandiant
Wacatac

【ニュース】

■2021年

◆CD Projekt's stolen source code allegedly sold by ransomware gang (BleepingComputer, 2021/02/13 10:35)
[CD Projektが盗まれたソースコード、ランサムウェア・ギャングが販売したとの疑惑が浮上]
https://www.bleepingcomputer.com/news/security/cd-projekts-stolen-source-code-allegedly-sold-by-ransomware-gang/
https://malware-log.hatenablog.com/entry/2021/02/13/000000_7

◆HelloKitty ransomware is targeting vulnerable SonicWall devices (BleepingComputer, 2021/07/17 11:44)
[ランサムウェア「HelloKitty」は脆弱なSonicWallデバイスを標的にしている]
https://www.bleepingcomputer.com/news/security/hellokitty-ransomware-is-targeting-vulnerable-sonicwall-devices/
https://malware-log.hatenablog.com/entry/2021/07/17/000000_3

◆FBI: HelloKitty ransomware adds DDoS attacks to extortion tactics (BleepingComputer, 2021/11/01 10:13)
https://www.bleepingcomputer.com/news/security/fbi-hellokitty-ransomware-adds-ddos-attacks-to-extortion-tactics/
https://malware-log.hatenablog.com/entry/2021/11/01/000000_1

◆HelloKitty ransomware gang also targets victims with DDoS attacks (Security Affairs, 2021/11/01)
[ランサムウェア「HelloKitty」のギャングがDDoS攻撃でも被害者を狙う]
https://securityaffairs.co/wordpress/124059/malware/hellokitty-ransomware-fbi-alert.html
https://malware-log.hatenablog.com/entry/2021/11/01/000000_4

◆FBI、ランサムウェア「Hello Kitty」「FiveHands」用いる攻撃について警告 (マイナビニュース, 2021/11/03 12:45)
https://news.mynavi.jp/article/20211103-2175611/
https://malware-log.hatenablog.com/entry/2021/11/03/000000_3


■2022年

◆身代金価格に合意しても機密情報を暴露 ランサムウェア攻撃による身代金交渉の実情とは (ITmedia, 2022/02/03 09:00)
https://www.itmedia.co.jp/enterprise/articles/2202/02/news066.html
https://malware-log.hatenablog.com/entry/2022/02/03/000000_1

◆Costa Rica’s public health agency hit by Hive ransomware (BleepingComputer, 2022/05/31 13:34)
[コスタリカの公衆衛生機関がランサムウェア「Hive」に感染]
https://www.bleepingcomputer.com/news/security/costa-rica-s-public-health-agency-hit-by-hive-ransomware/
https://malware-log.hatenablog.com/entry/2022/05/31/000000_3

◆After Conti Ransomware Brand Retires, Spinoffs Carry On (BankInfoSecurity, 2022/06/24)
[ランサムウェア・ブランド「コンティ」の撤退後、スピンオフ企業が続々と登場]
https://www.bankinfosecurity.com/after-conti-ransomware-brand-retires-spinoffs-carry-on-a-19447
https://malware-log.hatenablog.com/entry/2022/06/24/000000_11

◆How Conti ransomware hacked and encrypted the Costa Rican government (BleepingComputer, 2022/07/21 10:20)
[ランサムウェア「Conti」がコスタリカ政府をハッキングし、暗号化するまでの流れ]
https://www.bleepingcomputer.com/news/security/how-conti-ransomware-hacked-and-encrypted-the-costa-rican-government/
https://malware-log.hatenablog.com/entry/2022/07/21/000000_3

◆Google says former Conti ransomware members now attack Ukraine (BleepingComputer, 2022/09/07 07:00)
[Google、元Contiランサムウェアのメンバーが今度はウクライナを攻撃すると発表]
https://www.bleepingcomputer.com/news/security/google-says-former-conti-ransomware-members-now-attack-ukraine/
https://malware-log.hatenablog.com/entry/2022/09/07/000000_8

◆Cisco confirms Yanluowang ransomware leaked stolen company data (BleepingComputer, 2022/09/12 04:21)
[シスコ、ランサムウェア「Yanluowang」から盗まれた企業データが流出したことを確認]
https://www.bleepingcomputer.com/news/security/cisco-confirms-yanluowang-ransomware-leaked-stolen-company-data/
https://malware-log.hatenablog.com/entry/2022/09/12/000000_2


■2023年

◆Linux version of Abyss Locker ransomware targets VMware ESXi servers (BleepingComputer, 2023/07/29 11:17)
[Linux版ランサムウェア「Abyss Locker」、VMware ESXiサーバーを標的に]
https://www.bleepingcomputer.com/news/security/linux-version-of-abyss-locker-ransomware-targets-vmware-esxi-servers/
https://malware-log.hatenablog.com/entry/2023/07/29/000000

◆HelloKitty ransomware source code leaked on hacking forum (BleepingComputer, 2023/10/09 08:25)
[HelloKittyランサムウェアのソースコードがハッキング・フォーラムに流出]
https://www.bleepingcomputer.com/news/security/hellokitty-ransomware-source-code-leaked-on-hacking-forum/
https://malware-log.hatenablog.com/entry/2023/10/09/000000_1

◆HelloKitty ransomware now exploiting Apache ActiveMQ flaw in attacks (BleepingComputer, 2023/11/02 12:21)
[HelloKittyランサムウェア、Apache ActiveMQの欠陥を悪用した攻撃を開始]
https://www.bleepingcomputer.com/news/security/hellokitty-ransomware-now-exploiting-apache-activemq-flaw-in-attacks/
https://malware-log.hatenablog.com/entry/2023/11/02/000000

◆「Apache ActiveMQ」の脆弱性が標的に - ランサム攻撃にも悪用か (Security NEXT, 2023/11/06)
https://www.security-next.com/150846
https://malware-log.hatenablog.com/entry/2023/11/06/000000_5


■2024年

◆「HelloKitty」ランサムウェアが別名で復活、開発は継続していた (マイナビニュース, 2024/04/29 13:41)
https://news.mynavi.jp/techplus/article/20240429-2931570/
https://malware-log.hatenablog.com/entry/2024/04/29/000000_3


【ブログ】

■2021年

◆注目すべき新興ランサムウェア攻撃グループ: AvosLocker、Hive、HelloKity、LockBit 2.0 (UNIT42(paloalto), 2021/08/24 03:00)
https://unit42.paloaltonetworks.jp/emerging-ransomware-groups/
https://malware-log.hatenablog.com/entry/2021/08/24/000000_7

◆7 Emerging Ransomware Groups Practicing Double Extortion (BankInfo Security, 2021/08/26)
https://www.bankinfosecurity.com/7-emerging-ransomware-groups-practicing-double-extortion-a-17384
https://malware-log.hatenablog.com/entry/2021/08/26/000000_10


【検索】

■Google

google: DeathRansom
google: FiveHands
google: HelloKitty
google: UNC2447
google: Wacatac

google:news: DeathRansom
google:news: FiveHands
google:news: HelloKitty
google:news: UNC2447
google:news: Wacatac

google: site:virustotal.com DeathRansom
google: site:virustotal.com FiveHands
google: site:virustotal.com HelloKitty
google: site:virustotal.com UNC2447
google: site:virustotal.com Wacatac

google: site:github.com DeathRansom
google: site:github.com FiveHands
google: site:github.com HelloKitty
google: site:github.com UNC2447
google: site:github.com Wacatac


■Bing

https://www.bing.com/search?q=DeathRansom
https://www.bing.com/search?q=FiveHands
https://www.bing.com/search?q=HelloKitty
https://www.bing.com/search?q=UNC2447
https://www.bing.com/search?q=Wacatac

https://www.bing.com/news/search?q=DeathRansom
https://www.bing.com/news/search?q=FiveHands
https://www.bing.com/news/search?q=HelloKitty
https://www.bing.com/news/search?q=UNC2447
https://www.bing.com/news/search?q=Wacatac


■Twitter

https://twitter.com/search?q=%23DeathRansom
https://twitter.com/search?q=%23FiveHands
https://twitter.com/search?q=%23HelloKitty
https://twitter.com/search?q=%23UNC2447
https://twitter.com/search?q=%23Wacatac

https://twitter.com/hashtag/DeathRansom
https://twitter.com/hashtag/FiveHands
https://twitter.com/hashtag/HelloKitty
https://twitter.com/hashtag/UNC2447
https://twitter.com/hashtag/Wacatac


【関連まとめ記事】

全体まとめ
 ◆マルウェア / Malware (まとめ)

◆ランサムウェア (まとめ)
https://malware-log.hatenablog.com/entry/Ransomware

 ◆攻撃組織 / Actor (まとめ)

◆サイバー犯罪組織 (まとめ)
https://malware-log.hatenablog.com/entry/Cybercriminal_Group


Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2023