The FBI first identified Ranzy Locker ransomware in late 2020 when the variant began to target victims in the United States. Unknown cyber criminals using Ranzy Locker ransomware had compromised more than 30 US businesses as of July 2021. The victims include the...
Learning & Resource Center
Articles
Most Popular Posts
Conti Ransomware
While Conti is considered a ransomware-as-a-service (RaaS) model ransomware variant, there is variation in its structure that differentiates it from a typical affiliate model. It is likely that Conti developers pay the deployer's of the ransomware a wage rather than a...
BlackMatter Ransomware
This advisory provides information on cyber actor tactics, techniques, and procedures (TTPs) obtained from a sample of BlackMatter ransomware analyzed in a sandbox environment as well from trusted third-party reporting. Using embedded, previously compromised...
Indicators of Compromise Associated with IcedID
FBI reporting has indicated a recent increase in IcedID malware acting as a “dropper,” infecting victims with additional malware. Examples of ransomware variants dropped by IcedID include Defray777, GlobeImposter, Cuba, Conti, and REvil (aka Sodinokibi). First...
Increase in PYSA Ransomware Targeting Education Institutions
FBI reporting has indicated a recent increase in PYSA ransomware targeting education institutions in 12 US states and the United Kingdom. PYSA, also known as Mespinoza, is a malware capable of exfiltrating data and encrypting users’ critical files and data stored on...
Microsoft IOC Detection Tool for Exchange Server vulnerabilities
Microsoft has released the EOMT.ps1 tool that can automate portions of both the detection and patching process and help your organization check for indicators of compromise (IOCs) by running the Microsoft IOC Detection Tool for Exchange Server Vulnerabilities. In...
APT ACTORS EXPLOITING NEWLY IDENTIFIED CVE-2021-40539 IN MANAGEENGINE ADSELFSERVICE PLUS
This joint advisory is the result of analytic efforts between the Federal Bureau of Investigation (FBI), United States Coast Guard Cyber Command (CGCYBER), and the Cybersecurity and Infrastructure Security Agency (CISA) to highlight the cyber threat associated with...
Malware Analysis – AppleJeus: Dorusio
This Malware Analysis Report (MAR) is the result of analytic efforts among the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Treasury (Treasury) to highlight the cyber threat to cryptocurrency...
Malware Analysis – AppleJeus: Kupay Wallet
This Malware Analysis Report (MAR) is the result of analytic efforts among the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Treasury (Treasury) to highlight the cyber threat to cryptocurrency...
Articles
Advisories
AppleJeus: Analysis of North Korea’s Cryptocurrency Malware
Summary This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. This joint advisory is the result of analytic efforts among...
Articles
Research & Situational Awareness
Karakurt Data Extortion Group
The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Department of the Treasury (Treasury), and the Financial Crimes Enforcement Network (FinCEN) are releasing this joint Cybersecurity Advisory (CSA) to provide...
CVE-2022-30190 aka Follina
Move over log4j, there is a new 0-day vulnerability being exploited in the wild. The first sample that exploits the vulnerability appeared on VirusTotal on April 12th, 2022. Successful exploitation allows an attacker to run arbitrary code with the privileges of the...
AppleJeus: Analysis of North Korea’s Cryptocurrency Malware
Summary This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. This joint advisory is the result of analytic efforts among...
Articles
Company News
Fortify 24×7 Named on CRN’s 2022 MSP 500 List
PORINT ROBERTS, WA., Feb. 15, 2022 /PRNewswire/ -- Fortify 24x7 announced today that CRN®, a brand of The Channel Company, has named them to its Managed Service Provider (MSP) 500 list, in the Pioneer 250 category for 2022. CRN's annual MSP 500 list identifies the...
Fortify 24×7 Named To MSSP Top 250 MSSPs List For 2020
Fourth-Annual List Honors Leading MSSP, MDR, and SOCaaS Cybersecurity Companies Worldwide September 28, 2020, Point Roberts, WA: MSSP Alert, published by After Nines Inc., has named Fortify 24x7 to the Top 250 MSSPs list for 2020 (https://www.msspalert.com/top250)....
Fortify 24×7 Named To ChannelE2E Top 100 Vertical Market MSPs
May 5, 2020, Point Roberts, WA: Fortify 24x7 has been named to After Nines Inc.’s ChannelE2E Top 100 Vertical Market MSPs list and research (https://www.channelE2E.com/top100) for 2020. The annual list and research identify and honor the top 100 managed services...
What’s your plan for ransomware recovery? 🦾 Cyber readiness means you can bounce back fast. Test your disaster recovery plan twice a year! #cybersecuritymanaged #Ransomware #DisasterRecovery #fortify24x7 #infosec #dataprotection #BeCyberSmart #securityawareness #businesssecurity #cloudsecurity #leadership #readiness #compliance #securitytip #smbsecurity #protection #defend #plan #test #update
Why does every business need a cybersecurity health check? 🩺 Proactive assessments find risks before attackers do. Book your annual review and stay secure! #cybersecuritymanaged #CyberHealth #RiskAssessment #fortify24x7 #infosec #dataprotection #BeCyberSmart #securityawareness #businesssecurity #cloudsecurity #leadership #readiness #compliance #securitytip #smbsecurity #protection #defend #plan #test #update
How strong is your password policy? 🔒 Good password habits keep your business safe. Use a password manager and update passwords often! #cybersecuritymanaged #PasswordSecurity #CyberHygiene #fortify24x7 #infosec #dataprotection #BeCyberSmart #securityawareness #businesssecurity #cloudsecurity #leadership #readiness #compliance #securitytip #smbsecurity #protection #defend #plan #test #update
How quickly would your team spot a breach? 🛡️ Training and tools make all the difference. Run phishing simulations and stay ready! #cybersecuritymanaged #ThreatDetection #SecurityAwareness #IncidentResponse #fortify24x7 #infosec #dataprotection #BeCyberSmart #businesssecurity #cloudsecurity #leadership #readiness #compliance #securityawareness #smbsecurity #plan #test #defend
MFA (Multi-Factor Authentication) = security superpower! 💪
It blocks 99% of automated attacks. Turn it on for every account—especially email and cloud. #cybersecuritymanaged #MFA #ZeroTrust #CyberSecurity #infosec #BeCyberSmart #dataprotection #cloudsecurity #securityawareness #leadership #protection #businesssecurity #tech #security #defend #readiness #compliance #fortify24x7 #securitytip #business #smbsecurity
Are you cyber ready? 🔒
Cybersecurity readiness is about more than tech—it’s about planning, testing, and staying sharp. When did you last review your incident response plan?
#cybersecuritymanaged #cybersecurity #incidentresponse #riskmanagement #fortify24x7 #dataprotection #infosec #BeCyberSmart #security #tech #protection #businesssecurity #cloudsecurity #leadership #readiness #compliance #securityawareness #smbsecurity #plan #test #defend
