SEARCH
Archive
International Task Force Disrupts European Ransomware Operation
A task force of European and U.S. agencies arrested 12 suspects in Switzerland and Ukraine as part of an action against a ransomware operation.
Researcher Discovers Private Keys to Decrypt Rogue Cobalt Strike Beacon Communications
Didier Stevens has discovered several shared keypairs used by rogue Cobalt Strike implementations used by malicious actors.
New TA551 Email Campaign Installs Sliver Red-Team Tool
A new email hijacking campaign by the TA551 attack group is installing the legitimate Sliver red-team tool as a payload, possibly for use in future ransomware operations.
BlackMatter Ransomware Actors Targeting Critical Infrastructure
The BlackMatter ransomware operators are targeting critical infrastructure operators in the U.S., including food suppliers.
Q&A: Genevieve Stark and Joshua Shilko
Mandiant threat intelligence researchers give Decipher editor Lindsey O'Donnell-Welch a behind-the-scenes look at how they began tracking recently discovered ransomware group FIN12 - and what's next for the group.