Out of frustration Many incident response cases we handle, are linked to ransomware incidents, with LockBit being a recurring group we encounter. Even if, technically,
Tag: ransomware
Tales From the Incident Response Cliff Face – Case Study 2
In this installment of Tales from the Incident Response Cliff Face, we’ll take a look at a recent engagement, which involved a string of events
Dissecting and Detecting Babuk ransomware Cryptography
Written by Sylvain Pelissier and Antonio De La Piedra of the Kudelski Security Research Team The Babuk or Babyk ransomware was detected two years ago.
Ransomware as a Service – Nevada Ransomware campaign targeting VMWare ESXi servers
Written by Michal Nowakowski of the Kudelski Security Threat Detection & Research Team UPDATE – February 14th 2023 After the first wave of ESXiArgs ransomware
GPG Memory Forensics
Pretty Good Privacy (PGP) and the open source implementation GNU Privacy Guard (GPG) are encryption solutions following the OpenPGP standard. Even if GPG has been
Checking your Android device for known malware
Check All APK’s is a set of two scripts that leverage Drozer and the VirusTotal API to check whether a phone is running applications known to be malware. This is practical during security breaches, when an analyst has to identify malicious applications among hundreds of legitimate ones.