Search cyberveille.decio.ch

Found 3 bookmarks

Custom sorting

Cobalt Strike and a Pair of SOCKS Lead to LockBit Ransomware

Key Takeaways This intrusion began with the download and execution of a Cobalt Strike beacon that impersonated a Windows Media Configuration Utility. The threat actor used Rclone to exfiltrate data…

#thedfirreport #EN #2025 #Cobalt #Strike #LockBit #Ransomware #Rclone #mega.io #DFIR

·thedfirreport.com·Jan 27, 2025

Cobalt Strike and a Pair of SOCKS Lead to LockBit Ransomware

SEO Poisoning to Domain Control: The Gootloader Saga Continues

Key Takeaways More information about Gootloader can be found in the following reports: The DFIR Report, GootloaderSites, Mandiant, Red Canary, & Kroll. An audio version of this report can be … Read More

#thedfirreport #EN #2024 #Gootloader #DFIR

·thedfirreport.com·Feb 26, 2024

SEO Poisoning to Domain Control: The Gootloader Saga Continues

Buzzing on Christmas Eve: Trigona Ransomware in 3 Hours

#thedfirreport #EN #2024 #DFIR #Trigona #Ransomware

·thedfirreport.com·Jan 29, 2024

Buzzing on Christmas Eve: Trigona Ransomware in 3 Hours