Tag: Investigation

Sep 19/2022 12 min read SIEM & EDR What Is Data Exfiltration? MITRE ATT&CK® Exfiltration Tactic | TA0010 by Karolina Koval Sep 13/2022 11 min read SIEM & EDR What is Ransomware Detection? How to Detect Ransomware by Karolina Koval Aug 23/2022 11 min read SIEM & EDR What is Malware Analysis? by Karolina Koval Jun 24/2021 15 min read CVEs Defending Against Ransomware Attacks in 2021 by Vlad Garaschenko Feb 28/2018 8 min read CVEs Stealthphish investigation: 528 domains involved in BEC attack against Fortune 500 companies by Andrii Bezverkhyi Jul 2/2017 6 min read CVEs Petya.A / NotPetya is an AI-powered cyber weapon, TTPs lead to Sandworm APT group by Andrii Bezverkhyi May 13/2017 10 min read CVEs WannaCry no more: ransomware worm IOC’s, Tor C2 and technical analysis + SIEM rules by Andrii Bezverkhyi Jul 1/2016 2 min read CVEs Phishing of the DHL accounts: «DHL & PASSWORDS» by Eugene Tkachenko May 20/2016 5 min read CVEs Infrastructure infiltration via RTF by Aleksey Yasinskiy