Awesome Report about widespread Threat and techniques of attacker now 2020-2021
https://www.flickr.com/photos/christiaancolen/

Awesome Report about widespread Threat and techniques of attacker now 2020-2021

flavio critelli flavio critelli

flavio critelli

Professore Universitario di Chiara Fama in Digital Forensic e Cyber Security,Osint, Threat Intelligence - AI (Artificial Intelligence)

发布日期: 2021年11月15日
+ 关注

Virus Total have released the report about threat Ransomware about 2020-2021.

Virus Total is one of the most important stakeholders about massive threat analysis by comparison more than 80 different vendor.

Main notice is that exist 130 families Ransomware now, but there are several modification for each kind of threat that is proportional to the distribution.

So Threat more modified GANDCRAB is the threat more widespread .

This is important knowledge for understand how our IOC( index of compromise) will works, more there are variant on threat binaries, more IOC are in difficult situation to identify the threat.


Meanwhile our info-sec news speak a lots about Revil gang that is not stand on top 10 threat of the year, sometime there are difference between reality perceived and real world, very interesting thing.



Non è stato fornito nessun testo alternativo per questa immagine

Diagram about Cluster modification for each family threat

https://i.imgur.com/SRpEuIV.png







(by Virus Total Report 2021)


https://storage.googleapis.com/vtpublic/vt-ransomware-report-2021.pdf

Non è stato fornito nessun testo alternativo per questa immagine

This Diagram is very interesting about widespread Threat https://i.imgur.com/WNN4axp.png




(by Virus Total Report 2021)


GandCrab and Babuk are the most widespread and dangerous threat at the moment.

Second Point – Techniques attacker - system Windows OS Weak target

On Italian Cyber Team we have underline more time that first vector of attack is Windows OS.

Once again in our belief is confirmed by the Info-Sec that told 95 % of attack is by PE_Exe file, Power Shell and so on , all Windows OS weakness, so heterogeneous system Windows/Linux is a key factor for System office resilience, OS GNU-Linux have only few attacker very dangerous .

Good Notice

The good news is the privileged escalation on Windows OS and later movement techniques that are both of them very scary, are not so widespread .

https://storage.googleapis.com/vtpublic/vt-ransomware-report-2021.pdf

Report by Virus-Total Document , free downloadable :

https://storage.googleapis.com/vtpublic/vt-ransomware-report-2021.pdf

要查看或添加评论,请登录

flavio critelli的更多文章

社区洞察

其他会员也浏览了