Collaborate Disseminate
Maksim Silnikau was extradited to the US to face charges for roles in the distribution of the Angler exploit kit, malware, and the Ransom Cartel ransomware.
The post US Unseals Charges Against Three Eastern Europeans Over Ransomware, Malvertising appea… Continue reading US Unseals Charges Against Three Eastern Europeans Over Ransomware, Malvertising
An international operation coordinated by the UK National Crime Agency (NCA) has resulted in the arrest and extradition of a man believed to be one of the world’s most prolific Russian-speaking cybercrime actors. The arrest The NCA has been investigati… Continue reading Suspected head of Reveton, Ransom Cartel RaaS groups arrested
The International Institute For Counter-Terrorism is known to have served malicious software to its targeted user base back in 2013.In this post I’ll provide actionable intelligence behind the campaign and discuss in-depth the tactics technique and pro… Continue reading Historical OSINT – International Institute For Counter-Terrorism Serving Malware – An Analysis
Dear blog readers,It’s been a while since I’ve last posted a quality update and I’ve decided to share with everyone the results of a recent initiative where I aim to provide actionable threat intelligence on some of the key client-side exploits serving… Continue reading Exposing Modern Client-Side Exploits Serving Kits – An AV and Snort IDS MD5 List Compilation
Malicious redirection websites are using typosquatting and impersonation to attack unwary visitors. Continue reading Xfinity, McAfee Brands Abused by Parked Domains in Active Campaigns
Two exploits for Microsoft vulnerabilities have been added to the Purple Fox EK, showing ongoing development. Continue reading Purple Fox EK Adds Microsoft Exploits to Arsenal
As the world comes to grips with the coronavirus pandemic, the situation has proven to be a blessing in disguise for threat actors, who’ve taken advantage of the opportunity to target victims with scams or malware campaigns.
Now, according to a new re… Continue reading Hackers Created Thousands of Coronavirus (COVID-19) Related Sites As Bait
Quick links:https://support.virustotal.com/hc/en-us/articles/360001387057https://developers.virustotal.com/v3.0/reference#intelligence-searchhttps://github.com/VirusTotal/vt-pyTen years ago, VirusTotal launched VT Intelligence; a critical component of … Continue reading Uncovering threat infrastructure via URL, domain and IP address advanced pivots a.k.a. Netloc Intelligence
Cybercrime has never been one to hem in tactics with ideology or rules. Rather, malware operators are known to use what works and then modify code to continue to work. By “work,” we mean that the code does what it is supposed to; for information steal… Continue reading Maze Ransomware Exploiting Exploit Kits
The proxy is being distributed by the RIG and Fallout exploit kits. Continue reading Brand-New SystemBC Proxy Malware Spotted Using SOCKS5 for Stealth