fancy lazarus (3)

9193850468?profile=RESIZE_400xActivity Summary - Week Ending 2 July 2021:

  • Red Sky Alliance identified 19,270 connections from new unique IP addresses
  • Analysts identified 2,543 new IP addresses participating in various Botnets
  • 13 unique email accounts compromised with keyloggers were Observed
  • Netfilter
  • PJobRAT Spyware
  • Mirai Knockoffs
  • Salvation Army Hit
  • Conti & Canada
  • DragonForce / Israeli Banking
  • Fancy Lazarus attempts an attack on German Banks - Denied

Link to full report: IR-21-183-001_weekly_183_FINAL.pdf

 

9110998469?profile=RESIZE_400xActivity Summary - Week Ending 18 June 2021:

  • Red Sky Alliance observed 39 unique email accounts compromised with Keyloggers
  • Analysts identified 43,797 connections from new unique IP Addresses
  • 2,102 new IP addresses were observed participating in various Botnets
  • New Agent Tesla Variant
  • Infostealer Malware
  • Gelsemium
  • Norms: Do they Mean Anything?
  • Fancy Lazarus
  • Asia Pacific Public Sector Cyber Security Executive Council
  • Major Rx. Company still has Cyber Issues
  • Commander X Busted in Mexico

Link to

9093802653?profile=RESIZE_400xAt a time when ever escalating ransomware campaigns are making international headlines, it is interesting to see cyber adversaries demanding ransom before launching an attack.  The bad actors are now using marketing techniques to better message their crimes.  Researchers at ProofPoint explain a new and improved DDoS attack demonstrates how bad actors are consistently seeking more means of achieving their goals.  "DDoS attacks have become increasingly easier to launch and have a potentially subst