Click here to download all references as Bib-File.
2023-02-06 ⋅ Sophos ⋅ Qakbot mechanizes distribution of malicious OneNote notebooks QakBot |
2022-11-30 ⋅ Sophos ⋅ LockBit 3.0 ‘Black’ attacks and leaks reveal wormable capabilities and tooling LockBit |
2022-07-14 ⋅ Sophos ⋅ BlackCat ransomware attacks not merely a byproduct of bad luck BlackCat BlackCat |
2022-06-16 ⋅ SophosLabs Uncut ⋅ Confluence exploits used to drop ransomware on vulnerable servers Cerber |
2022-04-12 ⋅ Sophos ⋅ Attackers linger on government agency computers before deploying Lockbit ransomware LockBit |
2022-02-23 ⋅ Sophos ⋅ Dridex bots deliver Entropy ransomware in recent attacks Entropy |
2022-02-23 ⋅ SophosLabs Uncut ⋅ Dridex bots deliver Entropy ransomware in recent attacks Cobalt Strike Dridex Entropy |
2022-01-25 ⋅ Sophos ⋅ Windows services lay the groundwork for a Midas ransomware attack |
2022-01-25 ⋅ Sophos ⋅ Windows services lay the groundwork for a Midas ransomware attack Midas |
2021-12-22 ⋅ Sophos ⋅ Avos Locker remotely accesses boxes, even running in Safe Mode AvosLocker |
2021-12-21 ⋅ Sophos ⋅ Attackers test “CAB-less 40444” exploit in a dry run |
2021-11-11 ⋅ SophosLabs Uncut ⋅ BazarLoader ‘call me back’ attack abuses Windows 10 Apps mechanism BazarBackdoor |
2021-10-05 ⋅ Sophos ⋅ Python ransomware script targets ESXi server for encryption |
2021-09-21 ⋅ Sophos ⋅ Cring ransomware group exploits ancient ColdFusion server Cobalt Strike Cring |
2021-09-01 ⋅ Sophos ⋅ Fake pirated software sites serve up malware droppers as a service Raccoon |
2021-08-12 ⋅ Sophos ⋅ Gootloader’s “mothership” controls malicious content GootLoader |
2021-07-22 ⋅ Sophos ⋅ Malware increasingly targets Discord for abuse |
2021-06-17 ⋅ Sophos ⋅ Vigilante malware rats out software pirates while blocking ThePirateBay |
2021-06-11 ⋅ SophosLabs Uncut ⋅ Relentless REvil, revealed: RaaS as variable as the criminals who use it REvil |
2021-05-28 ⋅ SophosLabs Uncut ⋅ A new ransomware enters the fray: Epsilon Red Epsilon Red |