Select Page

Soc in a Box

Well not really, but I’m going to write a series of posts that will all tie together, which can be a very useful tool for anyone interested in having a security home lab, or even in a new or established security operations centre. I am going to be using open...

Boozallen Report on Petya

I came across this write up by boozallen yesterday, and found it had some very interesting thoughts and insight to how and what happened.   Click to access telebots-group-and-petya.pdf   1. Four VirusTotal users uploaded the compiled VBS backdoors along with...

Talos Update on M.E.Doc

http://blog.talosintelligence.com/2017/07/the-medoc-connection.html?m=1 Summary The Nyetya attack was a destructive ransomware variant that affected many organizations inside of Ukraine and multinational corporations with operations in Ukraine. In cooperation with...

Backdoor in M.E.Doc Application

I came across an interesting article today, with regards to the Petya / NotPetya cyber attack from last week.  This is a very good write up and analysis of how the organisation M.E.Doc appears to have been compromised and used to spread the malware in a series of...

Do not pay to Petra Ransomware Email

During the afternoon it emerged that the “PetrWrap/Petya” malware is currently spreading quickly in many places, including Ukraine. Here are the facts that we can contribute to “PetrWrap/Petya”: – Since midday it is no longer possible for the blackmailers to access...

Petya Ransomware Information

#petya #petrWrap #notPetya Win32/Diskcoder.Petya.C Ransomware attack. About This gist was built by the community of the researchers and was scribed by Kir and Igor from the QIWI/Vulners. We are grateful for the help of all those who sent us the data, links and...

Google Capture the Flag 2017

Google has announced its capture the flag for 2017.  Offering rewards for the winners and also participation if you are creative with your write up for the challenges you complete, so this should give many more individuals a chance of getting something for their...

Patriotic Hackers

In what is somewhat of a mildly amusing statement, and I am sure not all of the conversation.  Suggests that its down to patriotic  individuals acting on behalf of themselves when they feel there are negative comments made about Russia. It’s an interesting take...

Shadow Brokers Response Team – Retracted

As per my previous update, the idea behind what they wanted to do was a good one, but legally not so much.  Seems as humans we just cannot get around doing the right thing and being proactive.  We only understand how to react to when things go wrong. I’m...