Category: Research

European Energy Sector Organization Targeted by PupyRAT Malware in Late 2019

European Energy Sector Organization Targeted by PupyRAT Malware in Late 2019

January 23, 2020 • Insikt Group®

Insikt Group identified a PupyRAT C2 server communicating with a mail server for a European energy sector organization starting late last year.

Profiling the Linken Sphere Anti-Detection Browser

Profiling the Linken Sphere Anti-Detection Browser

January 7, 2020 • Insikt Group®

Insikt Group analyzes the Linken Sphere anti-detection browser and explains how the tool is used by cybercriminals to bypass fraud detection systems.

Iranian Cyber Response to Death of IRGC Head Would Likely Use Reported TTPs and Previous Access

Iranian Cyber Response to Death of IRGC Head Would Likely Use Reported TTPs and Previous Access

January 7, 2020 • Insikt Group®

We assess the likelihood of Iran's response to the killing of Qassem Suleimani and discuss likely tactics and groups involved in a cyber-based retaliation.

Nation-States, Ransomware Attacks, and Dark Web Activity: Our Top 5 Research Pieces From 2019

Nation-States, Ransomware Attacks, and Dark Web Activity: Our Top 5 Research Pieces From 2019

January 2, 2020 • The Recorded Future Team

We remember some of the most important research projects conducted by Insikt Group in 2019 and give you an overview of their findings.

State and Local Government Ransomware Attacks Surpass 100 for 2019

State and Local Government Ransomware Attacks Surpass 100 for 2019

December 20, 2019 • Allan Liska

Allan Liska shares insight into the 100th publicly reported ransomware attack against state and local governments catalogued by Recorded Future in 2019.

Operation Gamework: Infrastructure Overlaps Found Between BlueAlpha and Iranian APTs

Operation Gamework: Infrastructure Overlaps Found Between BlueAlpha and Iranian APTs

December 12, 2019 • Insikt Group®

Insikt Group uncovers evidence of an overlap in operational infrastructure between threat actor BlueAlpha and suspected Iranian nation-state activity.

Your Organization’s Network Access Is King: Here’s What to Do About It

Your Organization’s Network Access Is King: Here’s What to Do About It

October 30, 2019 • Insikt Group®

Insikt Group provides insight into the monetization mechanisms for unauthorized access, and lays out extensive risk mitigation strategies for combating it.

Joker’s Stash Upgrades With Large SSN Offering and Support Infrastructure

Joker’s Stash Upgrades With Large SSN Offering and Support Infrastructure

October 24, 2019 • Insikt Group®

Insikt Group identifies and connects the original Joker’s Stash marketplace to infrastructure used to support their user base.

Update: New Findings in Ransomware Attacks on State and Local Government

Update: New Findings in Ransomware Attacks on State and Local Government

October 8, 2019 • Allan Liska

Allan Liska provides an update on recent ransomware attacks following an earlier report on ransomware attacks affecting state and local government.

Early Analysis of Ransomware Attacks on the Healthcare Industry

Early Analysis of Ransomware Attacks on the Healthcare Industry

October 2, 2019 • Allan Liska

The perception that healthcare providers are more likely than other industries to pay ransom has led some ransomware actors to actively target them.