SEARCH
Archive
Researcher Discovers Private Keys to Decrypt Rogue Cobalt Strike Beacon Communications
Didier Stevens has discovered several shared keypairs used by rogue Cobalt Strike implementations used by malicious actors.
New TA551 Email Campaign Installs Sliver Red-Team Tool
A new email hijacking campaign by the TA551 attack group is installing the legitimate Sliver red-team tool as a payload, possibly for use in future ransomware operations.
Q&A: Genevieve Stark and Joshua Shilko
Mandiant threat intelligence researchers give Decipher editor Lindsey O'Donnell-Welch a behind-the-scenes look at how they began tracking recently discovered ransomware group FIN12 - and what's next for the group.
BlackMatter Ransomware Actors Targeting Critical Infrastructure
The BlackMatter ransomware operators are targeting critical infrastructure operators in the U.S., including food suppliers.
FinCEN Warns of Evolving Ransomware Money Laundering Efforts
A Financial Crimes Enforcement Network (FinCEN) report showed cybercriminals switching up their money laundering efforts, in order to avoid detection by law enforcement.