Malpedia Library

Click here to download all references as Bib-File.•

2021-11-08 ⋅ FBI ⋅ FBI
WANTED poster for Yevhgyeniy Polyanin (REvil affiliate)
REvil REvil

2021-11-02 ⋅ SpearTip ⋅ Chris Swagler
FBI Warning: HelloKitty Ransomware Add DDoS to Extortion Arsenal
HelloKitty

2021-11-01 ⋅ FBI ⋅ FBI
PIN Number 20211101-001: Ransomware Actors Use Significant Financial Events and Stock Valuation to Facilitate Targeting and Extortion of Victims
DarkSide RansomEXX DarkSide PyXie RansomEXX

2021-10-28 ⋅ FBI ⋅ FBI
CU-000154-MW: Tactics, Techniques, and Indicators of Compromise Associated with Hello Kitty/FiveHands Ransomware
HelloKitty

2021-10-25 ⋅ FBI ⋅ FBI
CU-000153-MW: Indicators of Compromise Associated with Ranzy Locker Ransomware
ThunderX

2021-09-21 ⋅ Washington Post ⋅ Ellen Nakashima, Rachel Lerman
FBI held back ransomware decryption key from businesses to run operation targeting hackers
REvil

2021-08-25 ⋅ FBI ⋅ FBI
MC-000150-MW: Indicators of Compromise Associated with Hive Ransomware
Hive

2021-08-23 ⋅ FBI ⋅ FBI
Indicators of Compromise Associated with OnePercent Group Ransomware
Cobalt Strike MimiKatz

2021-07-28 ⋅ CISA ⋅ Australian Cyber Security Centre (ACSC), CISA, FBI, NCSC UK
Top Routinely Exploited Vulnerabilities

2021-07-19 ⋅ FBI ⋅ FBI
PIN Number 20210719-001: Potential for Malicious Cyber Activities to Disrupt the 2020 Tokyo Summer Olympics

2021-07-08 ⋅ MIT Technology Review ⋅ Patrick Howell O'Neill
Inside the FBI, Russia, and Ukraine’s failed cybercrime investigation

2021-07-04 ⋅ CISA ⋅ US-CERT
CISA-FBI Guidance for MSPs and their Customers Affected by the Kaseya VSA Supply-Chain Ransomware Attack
REvil REvil

2021-07-01 ⋅ CISA, FBI, NCSC UK, NSA
Russian GRU (APT28) Conducting Global Brute Force Campaign to Compromise Enterprise and Cloud Environments
reGeorg

2021-06-02 ⋅ Bleeping Computer ⋅ Lawrence Abrams
FBI: REvil cybergang behind the JBS ransomware attack
REvil

2021-05-28 ⋅ FBI
Wanted by the FBI: Zhu Yunmin, Wu Shurong, Ding Xiaoyang, Cheng Qingmin
APT40

2021-05-20 ⋅ FBI ⋅ FBI
Alert Number CP-000147-MW: Conti Ransomware Attacks Impact Healthcare and First Responder Networks
Conti

2021-05-12 ⋅ FBI ⋅ FBI
PIN Number 20210512-001: Spear-Phishing Attack Directing Recipients to Download a Fake Windows Application Impersonating a Financial Institution

2021-05-07 ⋅ GCHQ ⋅ CISA, FBI, NCSC UK, NSA
Further TTPs associated with SVR cyber actors: Use of multiple publicly available exploits and Sliver framework to target organisations globally

2021-04-26 ⋅ CISA ⋅ CISA, Department of Homeland Security, FBI
Russian Foreign Intelligence Service (SVR)Cyber Operations: Trends and Best Practices for Network Defenders
elf.wellmess WellMess

2021-04-15 ⋅ CISA, FBI, NSA
Russian SVR Targets U.S. and Allied Networks