X-Industry

The Snatch Ransomware group was first discovered at the end of 2019. The ransomware gained publicity due to its novel encryption method in which is reboots that target machine into safe mode and disables a number of security services before encrypting files, limiting the likelihood of detection.

The Ransomware also differs from major groups as they use targeted attacks rather than large phishing campaigns to gain access to specific companies. The group has been described as a big game hunter tha

Activity Summary - Week Ending on 17 December 2021:

• Red Sky Alliance identified 39,374 connections from new IP’s checking in with our Sinkholes
• ru Still has Issues after 3 weeks
• Analysts identified 4,459 new IP addresses participating in various Botnets
• Zoho ManageEngine
• Manga
• Log4j
• Ransomware bad actor arrested in Romania
• Volvo Snatched
• AgentTesla
• Cyber Attacks are a National Security Concern
• Kronos Attack

Link to full report: IR-21-351-001_weekly351.pdf

Activity Summary - Week Ending on 10 December 2021:

• Red Sky Alliance identified 44,043 connections from new IP’s checking in with our Sinkholes
• dauction.ru Still has Issues
• Analysts identified 3,806 new IP addresses participating in various Botnets
• Phobos Ransomware
• Yanluowang Ransomware
• The Snatch Hacking Group
• USB drives – Old Tactic
• Hacker arrested in Ottawa
• Becoming a Pro
• Trains, Planes and Automobiles
• MatchMG

Link to full report: IR-21-344-001_weekly344.pdf