Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Diaries by Keyword - SANS Internet Storm Center Diaries by Keyword

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Date Author Title

HERMES RANSOMWARE

2018-08-15Brad DuncanMore malspam pushing password-protected Word docs for AZORult and Hermes Ransomware

HERMES

2018-08-15/a>Brad DuncanMore malspam pushing password-protected Word docs for AZORult and Hermes Ransomware
2018-07-27/a>Brad DuncanMalspam with password-protected Word docs pushes Hermes ransomware

RANSOMWARE

2022-03-26/a>Guy BruneauIs buying Cyber Insurance a Must Now?
2021-12-04/a>Guy BruneauA Review of Year 2021
2021-07-02/a>Xavier MertensKaseya VSA Users Hit by Ransomware
2021-05-17/a>Daniel WesemannRansomware Defenses
2021-04-08/a>Xavier MertensSimple Powershell Ransomware Creating a 7Z Archive of your Files
2021-01-21/a>Xavier MertensPowershell Dropping a REvil Ransomware
2021-01-02/a>Guy BruneauProtecting Home Office and Enterprise in 2021
2020-08-06/a>Xavier MertensA Fork of the FTCode Powershell Ransomware
2020-01-02/a>Xavier MertensRansomware in Node.js
2019-10-03/a>Xavier Mertens"Lost_Files" Ransomware
2019-05-13/a>Xavier MertensFrom Phishing To Ransomware?
2019-02-20/a>Brad DuncanMore Russian language malspam pushing Shade (Troldesh) ransomware
2019-01-10/a>Brad DuncanHeartbreaking Emails: "Love You" Malspam
2018-11-29/a>Brad DuncanRussian language malspam pushing Shade (Troldesh) ransomware
2018-08-15/a>Brad DuncanMore malspam pushing password-protected Word docs for AZORult and Hermes Ransomware
2018-07-27/a>Brad DuncanMalspam with password-protected Word docs pushes Hermes ransomware
2018-06-25/a>Didier StevensGuilty by association
2018-01-25/a>Xavier MertensRansomware as a Service
2017-10-24/a>Xavier MertensBadRabbit: New ransomware wave hitting RU & UA
2017-09-20/a>Renato MarinhoOngoing Ykcol (Locky) campaign
2017-09-01/a>Brad DuncanMalspam pushing Locky ransomware tries HoeflerText notifications for Chrome and FireFox
2017-07-14/a>Brad DuncanNemucodAES and the malspam that distributes it
2017-06-28/a>Brad DuncanPetya? I hardly know ya! - an ISC update on the 2017-06-27 ransomware outbreak
2017-06-28/a>Brad DuncanCatching up with Blank Slate: a malspam campaign still going strong
2017-05-24/a>Brad DuncanJaff ransomware gets a makeover
2017-05-12/a>Xavier MertensMassive wave of ransomware ongoing
2017-04-12/a>Brad DuncanMalspam on 2017-04-11 pushes yet another ransomware variant
2017-02-09/a>Brad DuncanCryptoShield Ransomware from Rig EK
2017-01-06/a>John BambenekRansomware Operators Cold Calling UK Schools to Get Malware Through
2016-10-10/a>Didier StevensRadare2: rahash2
2016-08-23/a>Xavier MertensVoice Message Notifications Deliver Ransomware
2016-06-26/a>Rick WannerBart - a new Ransomware
2016-04-11/a>John BambenekTool Released to Decrypt Petya Ransomware Infected Disks
2016-04-01/a>John BambenekTips for Stopping Ransomware
2016-03-09/a>Rob VandenBrinkA Wall Against Cryptowall? Some Tips for Preventing Ransomware
2016-03-07/a>Xavier MertensOSX Ransomware Spread via a Rogue BitTorrent Client Installer
2016-03-06/a>Jim ClausingNovel method for slowing down Locky on Samba server using fail2ban
2015-11-07/a>Didier StevensRansomware & Entropy: Your Turn -> Solution
2015-10-30/a>Didier StevensRansomware & Entropy: Your Turn
2015-10-18/a>Didier StevensRansomware & Entropy
2015-04-30/a>Brad DuncanDalexis/CTB-Locker malspam campaign
2014-07-24/a>Bojan ZdrnjaWindows Previous Versions against ransomware
2014-06-11/a>Daniel WesemannPay attention to Cryptowall!
2013-10-22/a>John BambenekCryptolocker Update, Request for Info
2008-06-10/a>Swa FrantzenRansomware keybreaking