Click here to download all references as Bib-File.•
| 2020-10-29
⋅
US-CERT
⋅
Malware Analysis Report (AR20-303A): PowerShell Script: ComRAT Agent.BTZ |
| 2020-10-29
⋅
Github (Swisscom)
⋅
List of CobaltStrike C2's used by RYUK Cobalt Strike |
| 2020-10-29
⋅
CNN
⋅
Several hospitals targeted in new wave of ransomware attacks Ryuk |
| 2020-10-29
⋅
Bleeping Computer
⋅
Hacking group is targeting US hospitals with Ryuk ransomware Ryuk |
| 2020-10-29
⋅
Reuters
⋅
Building wave of ransomware attacks strike U.S. hospitals Ryuk |
| 2020-10-29
⋅
Bleeping Computer
⋅
Maze ransomware is shutting down its cybercrime operation Egregor Maze |
| 2020-10-29
⋅
Bleeping Computer
⋅
REvil ransomware gang claims over $100 million profit in a year REvil |
| 2020-10-29
⋅
Security Boulevard
⋅
Egregor: Sekhmet’s Cousin Egregor |
| 2020-10-28
⋅
Twitter (@BitsOfBinary)
⋅
Tweet on macOS version of Manuscrypt Manuscrypt |
| 2020-10-28
⋅
Tweet about RegretLocker from MHT RegretLocker |
| 2020-10-28
⋅
Youtube (SANS Institute)
⋅
Spooky RYUKy: The Return of UNC1878 | SANS STAR Webcast Ryuk UNC1878 |
| 2020-10-28
⋅
Github (aaronst)
⋅
UNC1878 indicators Ryuk UNC1878 |
| 2020-10-28
⋅
Risky.biz
⋅
The many personalities of Lazarus |
| 2020-10-28
⋅
Bitdefender
⋅
A Decade of WMI Abuse – an Overview of Techniques in Modern Malware sLoad Emotet Maze |
| 2020-10-28
⋅
RiskIQ
⋅
Domain Impersonation Targets Saudi Arabian Government Ministries |
| 2020-10-28
⋅
Youtube (SANS Digital Forensics and Incident Response)
⋅
STAR Webcast: Spooky RYUKy: The Return of UNC1878 Ryuk |
| 2020-10-28
⋅
KrebsOnSecurity
⋅
FBI, DHS, HHS Warn of Imminent, Credible Ransomware Threat Against U.S. Hospitals Ryuk |
| 2020-10-28
⋅
Intel 471
⋅
Alleged REvil member spills details on group’s ransomware operations REvil |
| 2020-10-28
⋅
CISA
⋅
AA20-302A: Ransomware Activity Targeting the Healthcare and Public Health Sector AnchorDNS Anchor BazarBackdoor Ryuk |
| 2020-10-28
⋅
SophosLabs Uncut
⋅
Hacks for sale: inside the Buer Loader malware-as-a-service Buer Ryuk Zloader |