Upcoming Webinar – Tools and Tactics to solve the top 3 Open-Source Intelligence Challenges Learn More +

Ransomware Rewind

Weekly Update: 24 January 2023

Ransomware Rewind is a compilation of ransomware-related stories published over the past week.

Most Active Ransomware Operators

Volume of messages posted by operators during the last week.

Significant Campaigns & Incidents

Documents and discussion of significant ransomware campaigns, incidents, and associated actors.

Data Incidents Reported at 2 Eyecare PracticesInvisionMag.com – Jan 23 2023 17:47
5 Months’ Worth of Court Data Lost in Ransomware AttackDaily Post Vanuatu – Jan 20 2023 21:25

Tactics & Techniques

Discussion and mentions of significant techniques deployed by threat actors.

Vice Society Ransomware Group Targets Manufacturing CompaniesTrend Micro Simply Security – Jan 24 2023 09:40
Why Mzqw ransomware is so dangerousMedium Cybersecurity – Jan 20 2023 15:04
Sliver C2 Leveraged by Many Threat ActorsCybereason Blog – Jan 19 2023 13:00

Researcher Analysis

Analysis, deep-dives and reverse engineering.

That Threat Archive Vol 2: Royal RansomwareMedium Cybersecurity – Jan 23 2023 08:54
ISMG Editors: Why Is LockBit Ransomware Group So Prolific?BankInfoSecurity – Jan 20 2023 23:39
Lockbit, the Why, What and WhoMedium Cybersecurity – Jan 20 2023 15:52
Phishing and ransomware amongst biggest threats to charity sectorNational Cyber Security Centre Alerts & Advisories – Jan 20 2023 00:00
Ransomware Picture: Volume of Known Attacks Remains ConstantBankInfoSecurity – Jan 18 2023 19:39

Legal Actions and Discussion

Actions, consequences, and policy discussion by governments and organisations.

Australia Initiates Global Ransomware Task Force OperationsBankInfoSecurity – Jan 23 2023 21:40
Ransomware money laundering operation disrupted, founder arrestedMalwarebytes Unpacked – Jan 20 2023 12:30
EU cyber resilience regulation could translate into millions in finesHelp Net Security News – Jan 19 2023 04:30
Ransomware Remains Top Cyber Threat, Former NCSC Chief SaysDataBreachToday.eu – Jan 18 2023 23:38

The content in this report was compiled by the use of our award-winning intelligence product Silobreaker Online. Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of any content in this report and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content in the report.