This report documents the threat group Lazarus and their TTPs (Tactics, Techniques and Procedures). Containing recommendations to help detect and mitigate the threat. The report also includes references where information within this report was identified from.
This report documents the lifecycle of the PowerDrop Malware and their TTPs (Tactics, Techniques and Procedures). Containing recommendations to help detect and mitigate the threat. The report also includes references where information within this report was identified from.
This report documents the threat group Lapsus$ and their TTPs (Tactics, Techniques and Procedures), and contains recommendations to help detect and mitigate the emerging threat. The report also includes references to where the information within this report was identified from.
The purpose of this report is to document the current form and methodologies used by the HermeticWiper malware. The information documented is then used by Cyber Security Associates Ltd (CSA) Cyber Analysts to hunt for the threat within the client environment through the use of our supported SIEMs, BorderPoint and LogRhythm, and advise on countermeasures to monitor and detect for the subject threat.
On the 9th December 2021, a 0-day exploit was discovered in the Java logging library log4j2. The Remote Code Execution (RCE) vulnerability allows an adversary to send a specially crafted string to a vulnerable application resulting in commands run by the server.
A genuine FBI/DHS email address was observed mass-sending emails to thousands of addresses scraped from a breached database, this report delves into what and how it happened.
The purpose of this report is to document the current form and methodologies used by the AvosLocker Ransomware.
The purpose of this report is to document the current form and methodologies used by the Rogue Malware.
The purpose of this report is to document the current form and methodologies used by the Zeoticus 2.0 Ransomwaret
The purpose of this report is to document the current form and methodologies used by the Babuk Locker Ransomware.
Cyber attacks are still a potential threat when working remotely so it’s important to stay vigilant! This White Paper will help you practice good cyber-hygiene outside of the office environment.
2024 Cyber Security Associates Ltd - All Rights Reserved | All Logos and Trademarks are © or ™ of there respective owners