Click here to download all references as Bib-File.
2022-07-20 ⋅ Advanced Intelligence ⋅ Anatomy of Attack: Truth Behind the Costa Rica Government Ransomware 5-Day Intrusion Cobalt Strike |
2022-06-07 ⋅ AdvIntel ⋅ BlackCat — In a Shifting Threat Landscape, It Helps to Land on Your Feet: Tech Dive BlackCat BlackCat Cobalt Strike |
2022-05-20 ⋅ AdvIntel ⋅ DisCONTInued: The End of Conti’s Brand Marks New Chapter For Cybercrime Landscape AvosLocker Black Basta BlackByte BlackCat Conti HelloKitty Hive |
2022-05-17 ⋅ Advanced Intelligence ⋅ Hydra with Three Heads: BlackByte & The Future of Ransomware Subsidiary Groups BlackByte Conti |
2022-04-18 ⋅ AdvIntel ⋅ Enter KaraKurt: Data Extortion Arm of Prolific Ransomware Group AvosLocker BazarBackdoor BlackByte BlackCat Cobalt Strike HelloKitty Hive |
2022-02-23 ⋅ AdvIntel ⋅ 24 Hours From Log4Shell to Local Admin: Deep-Dive Into Conti Gang Attack on Fortune 500 (DFIR) Cobalt Strike Conti |
2022-02-16 ⋅ Advanced Intelligence ⋅ The TrickBot Saga’s Finale Has Aired: Spinoff is Already in the Works TrickBot |
2022-01-14 ⋅ Advanced Intelligence ⋅ Storm in "Safe Haven": Takeaways from Russian Authorities Takedown of REvil REvil REvil |
2021-12-17 ⋅ Advanced Intelligence ⋅ Ransomware Advisory: Log4Shell Exploitation for Initial Access & Lateral Movement Conti |
2021-11-20 ⋅ Advanced Intelligence ⋅ Corporate Loader "Emotet": History of "X" Project Return for Ransomware Emotet |
2021-09-29 ⋅ Advanced Intelligence ⋅ Backup “Removal” Solutions - From Conti Ransomware With Love Cobalt Strike Conti |
2021-09-09 ⋅ Advanced Intelligence ⋅ Groove VS Babuk; Groove Ransom Manifesto & RAMP Underground Platform Secret Inner Workings Babuk Babuk |
2021-08-17 ⋅ Advanced Intelligence ⋅ Hunting for Corporate Insurance Policies: Indicators of [Ransom] Exfiltration Cobalt Strike Conti |
2021-07-14 ⋅ Advanced Intelligence ⋅ REvil Vanishes From Underground - Infrastructure Down REvil |
2021-06-30 ⋅ Advanced Intelligence ⋅ Ransomware-&-CVE: Industry Insights Into Exclusive High-Value Target Adversarial Datasets BlackKingdom Ransomware Clop dearcry Hades REvil |
2021-06-16 ⋅ Advanced Intelligence ⋅ The Rise & Demise of Multi-Million Ransomware Business Empire Avaddon |
2021-06-08 ⋅ Advanced Intelligence ⋅ From QBot...with REvil Ransomware: Initial Attack Exposure of JBS QakBot REvil |
2021-05-03 ⋅ Twitter (@y_advintel) ⋅ Tween on new RaaS Galaxy Ransomware |
2021-04-17 ⋅ Advanced Intelligence ⋅ Adversary Dossier: Ryuk Ransomware Anatomy of an Attack in 2021 Ryuk |
2020-07-15 ⋅ Advanced Intelligence ⋅ Inside REvil Extortionist “Machine”: Predictive Insights Gandcrab REvil |