49ers (2)

10119547866?profile=RESIZE_400xActivity Summary - Week Ending on 18 February 2022:

  • Red Sky Alliance identified 18,841 connections from new IP’s checking in with our Sinkholes
  • Ugg Boot 4 Sale
  • Analysts identified 5,853 new IP addresses participating in various Botnets
  • ACTINIUM/Gamaredon/DEV-0157
  • Vulnerabilities in Adobe Illustrator & Photoshop
  • APTs in Turkey and Colombia on the Rise
  • Fake Windows 11
  • 49ers Hit by BlackByte
  • TA2541
  • Ecommerce Sites Rigged
  • Truckers and Doxxing

Link to full report: IR-22-049-001_weekly049.pdf

10115747286?profile=RESIZE_400xBlackByte ransomware has been used in recent attacks on at least three critical infrastructure sectors in the US.  Available to bad actors as a Ransomware-as-a-Service (RaaS), BlackByte has been used in attacks against US and foreign businesses, including in critical infrastructure sectors such as government, financial, and food and agriculture, the FBI and US Secret Service warn.

The gang emerged in July 2021 when it began exploiting software vulnerabilities to target corporate victims worldwid