Year: 2016

DISMANTLING BLACKENERGY, PART2 – “THE MARK”

I will not make a speech on what a BlackEnergy framework is since a lot was written about it already and without me, however I want to refer to information from this particular review:

Read More
Dismantling KillDisk: reverse of the BlackEnergy destructive component

Let us skip the long introduction on BlackEnergy threat and go straight to studying the malware component called “ololo.exe” also known to the public as KillDisk. KillDisk is a module of BlackEnergy framework aimed at data destruction and creating havoc / distraction during the APT operations.

Read More
SOC Prime introduces CyberView

SOC Prime is proud to announce the latest solution in our portfolio – CyberView. It provides a simple interactive way of exploring and understanding the continuous data flow and empowers business and security experts to make real time decisions on vulnerabilities, risks and remediation.

Read More
SVOD Europe: SOC Prime wins B2B section in startup pitch competition. See you at the finals!

SOC Prime’s CEO Andrii Bezverkhyi has successfully pitched our company at the SVOD Europe investor conference yesterday and is now preparing for the final round. Wish us luck! The SVOD Europe conference gathers entrepreneurs, tech leaders, investors and seasoned business experts to support innovation and technological advances in Europe. One of the most exciting components […]

Read More
Tor detection and monitoring solution “DetectTor” is available for purchase directly from the site

Our latest product aimed at protecting companies from the unauthorized Tor use can now be purchased online starting at just $750.

Read More
SOC Prime amplifies efforts to protect the world from BlackEnergy

After experiencing the consequences of BlackEnergy attack firsthand and becoming involved in its deep analysis, we have decided to share our findings and provide effective prevention methods immediately. As a first step, we have compiled BlackEnergy Disrupt Matrix – a free and open Framework with step-by-step guide on making your perimeter safe and immune to […]

Read More
BlackEnergy Phase 2: from Media and Electric companies to Darknet and TTPs

Hello again! As a follow up to multitude of releases, blog entries and news, we would like to provide more details on the latest BlackEnergy incarnation in Ukraine and how the attacks on Media industry & Electric companies are related, and more over – provide an insight into more indicators of compromise (IOCs). Let us […]

Read More