TechnologyNov 28

I Found a Secret Hacker Team Fighting Cybercrime (they saved $1 billion)

https://tube.blueben.net/w/3u9VvdDJgbgULjKgiRM2MJ

I Found a Secret Hacker Team Fighting Cybercrime (they saved $1 billion)

PeerTube
Jon GreigNov 1, 2023

A Massachusetts-based medical management company has agreed to a $100,000 settlement with the U.S. Department of Health and Human Services following a 2017 GandCrab ransomware attack

#HHS #GandCrab

https://therecord.media/medical-firm-reaches-settlement-with-hhs

Medical firm reaches $100,000 settlement with HHS over 2017 ransomware attack

Doctors’ Management Services — which provides medical billing and payer credentialing services — was attacked by the now-defunct GandCrab ransomware gang in April 2017. The settlement with HHS is the first for the agency over a ransomware attack.

acrypthash👨🏻‍💻Feb 23, 2023

I am reading a few threat landscape and semi annual security recap reports and came across a section in one that mentioned that GandCrab was starting to become active again.
I've personally had to deal with GandCrab during an IR event in the past, so this naturally peaked my interest. In the rabbit hole that ensued, I found this awesome analysis that I wish I had 4 years ago. Happy hacking!

https://www.taintedbits.com/2018/10/18/gandcrab-detail-analysis-of-js-delivery-payload/

#security #reports #threatlandscape #Gandcrab #ransomware

Gandcrab v5.0.3 detail analysis of javascript delivery payload

Recently a friend of mine shared with me a Javascript file which on execution resulted in machine been infected by GandCrab ransomeware. Initial through was that it must be the Javascript implementati

Tainted Bits
dispatchJan 15, 2022
At Request of U.S., Russia Rounds Up 14 REvil Ransomware Affiliates https://krebsonsecurity.com/2022/01/at-request-of-u-s-russia-rounds-up-14-revil-ransomware-affiliates/ #RomanGennadyevichMuromsky #AndreySergeevichBessonov #Ne'er-Do-WellNews #DmitriAlperovitch #ColonialPipeline #TheComingStorm #PresidentBiden #ImmersiveLabs #VladimirPutin #Ransomware #KevinBreen #DarkSide #GandCrab #NotPetya #rEvil #FSB
At Request of U.S., Russia Rounds Up 14 REvil Ransomware Affiliates – Krebs on Security

ITSEC NewsJan 14, 2022
At Request of U.S., Russia Rounds Up 14 REvil Ransomware Affiliates - The Russian government said today it arrested 14 people accused of working for “RE... https://krebsonsecurity.com/2022/01/at-request-of-u-s-russia-rounds-up-14-revil-ransomware-affiliates/ #romangennadyevichmuromsky #andreysergeevichbessonov #dmitrialperovitch #neer-do-wellnews #colonialpipeline #thecomingstorm #presidentbiden #immersivelabs #vladimirputin #ransomware #kevinbreen #darkside #gandcrab #notpetya #fsb
At Request of U.S., Russia Rounds Up 14 REvil Ransomware Affiliates – Krebs on Security

Tarnkappe.infoOct 28, 2021
📬 REvil: LKA Baden-Württemberg enttarnt mutmaßlichen Ransomware-Drahtzieher #DarkCommerce #Malware #ErmittlungsgruppeKrabbe #GandCrab #LKABadenWürttemberg #NikolayK #REvil https://tarnkappe.info/revil-lka-baden-wuerttemberg-enttarnt-mutmasslichen-ransomware-drahtzieher/
REvil: LKA Baden-Württemberg enttarnt mutmaßlichen Ransomware-Drahtzieher

LKA-Ermittlern ist es aktuell gelungen, einen mutmaßlichen Ransomware-Erpresser, der hinter der REvil-Gruppe stecken soll, zu enttarnen.

Tarnkappe.info
dispatchAug 5, 2021
Ransomware Gangs and the Name Game Distraction https://krebsonsecurity.com/2021/08/ransomware-gangs-and-the-name-game-distraction/ #EvgeniyMikhailovichBogachev #BlackMatterransomware #DarkSideransomware #Babukransomware #Griefransomware #REvilransomware #TheBusinessClub #Cryptolocker #DoppelPaymer #GameoverZeuS #IndrikSpider #WastedLocker #CrowdStrike #FabianWosar #Ransomware #BitPaymer #EvilCorp. #MarkArena #Emsisoft #GandCrab #Cerber #Dridex #TA505 #zeus
Ransomware Gangs and the Name Game Distraction – Krebs on Security

Teddy / Domingo (🇨🇵/🇬🇧)Jan 7, 2021
#Babuk ouvre le bal des #ransomwares 2021. #Sodinokibi, #GandCrab, #WannaCry, #Petya, #Ryuk... Ces grands noms des #ransomwares ont frappé les esprits autant que les SI des entreprises ces dernières années. Mais la relève semble - malheureusement - assurée avec en ce début d'année l'arrivée de #Babuk
https://www.lemondeinformatique.fr/actualites/lire-babuk-ouvre-le-bal-des-ransomwares-2021-81560.html
#sécurité #malware
Babuk ouvre le bal des ransomwares 2021 - Le Monde Informatique

Si la vague de ransomwares qui s'est abattue sur les entreprises a été particulièrement puissante l'année dernière, 2021 s'ouvre avec la découverte...

ITSEC NewsSep 18, 2020
Threat Roundup for September 11 to September 18 - Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Sept. 11... http://feedproxy.google.com/~r/feedburner/Talos/~3/rMr2xENOthU/threat-roundup-0911-0918.html #vulnerabilities #threatroundup #ciscotalos #darkcomet #gandcrab #malware #dridex #emotet #remcos #arkei #talos #xpiro #shiz
Threat Roundup for September 11 to September 18

A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group

ITSEC NewsSep 11, 2020
Threat Roundup for September 4 to September 11 - Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Sept. 4 ... http://feedproxy.google.com/~r/feedburner/Talos/~3/pfRb9tHcikM/threat-roundup-0904-0911.html #vulnerabilities #threatroundup #ciscotalos #gandcrab #malware #dridex #emotet #kovter #upatre #talos #razy
Threat Roundup for September 4 to September 11

A blog from the world class Intelligence Group, Talos, Cisco's Intelligence Group