Select Page

Soc in a Box

Well not really, but I’m going to write a series of posts that will all tie together, which can be a very useful tool for anyone interested in having a security home lab, or even in a new or established security operations centre. I am going to be using open...

Talos Update on M.E.Doc

http://blog.talosintelligence.com/2017/07/the-medoc-connection.html?m=1 Summary The Nyetya attack was a destructive ransomware variant that affected many organizations inside of Ukraine and multinational corporations with operations in Ukraine. In cooperation with...

Backdoor in M.E.Doc Application

I came across an interesting article today, with regards to the Petya / NotPetya cyber attack from last week.  This is a very good write up and analysis of how the organisation M.E.Doc appears to have been compromised and used to spread the malware in a series of...

Do not pay to Petra Ransomware Email

During the afternoon it emerged that the “PetrWrap/Petya” malware is currently spreading quickly in many places, including Ukraine. Here are the facts that we can contribute to “PetrWrap/Petya”: – Since midday it is no longer possible for the blackmailers to access...

Petya Ransomware Information

#petya #petrWrap #notPetya Win32/Diskcoder.Petya.C Ransomware attack. About This gist was built by the community of the researchers and was scribed by Kir and Igor from the QIWI/Vulners. We are grateful for the help of all those who sent us the data, links and...