Ransomware black hole creates havoc, finds Sophos 2022 report

Chester-Wisniewski-principal-research-scientist-Sophos - Ransomware black hole - havoc -2022 -report - techxmedia

Sophos released the Sophos 2022 Threat Report, which highlights how ransomware’s black hole is attracting other cyberthreats to form one vast, linked ransomware delivery system– with serious ramifications for IT security.

Lotem-Finkelsteen-Head-of-Threat-Intelligence-Check-Point-Research - cybercriminal - cyber world - Hero to villain - Cybersecurity - techxmedia

Hero to villain and loyal sidekick of the cybercriminal

Cybercriminals use a variety of techniques and attacks. Sometimes they want to be seen, they want to cause demonstrative damage, for example in Distributed Denial of Service (DDoS) attacks on websites. Sometimes they want to distract attention from other attacks or just to test their skills, show their strength and make headlines.

Timeline -of- threats-Cobalt-Strike - techxmedia

Cobalt Strike: Favorite tool from Advanced Persistent Threat(APT) to crimeware

Cobalt Strike use in malicious operations was largely associated with well-resourced threat actors, including large cybercrime operators like TA3546(also known as FIN7), advanced persistent threat (APT) groups such as TA423 (known as Leviathan or APT40).

Gootloader - Payload Delivery Options – Sophos research - techxmedia

Gootloader Expands Its Payload Delivery Options – Sophos research

Sophos researchers have named the platform, “Gootloader.” Gootloader is actively delivering malicious payloads through tightly targeted operations in the US, Germany and South Korea. Previous campaigns also targeted internet users in France.

About

Legal

Join our newsletter