Post date October 5, 2021 Post author S2 Research Team Collaborative Research on the CONTI Ransomware GroupAn Insight into the 'Customer' Negotiation Process and Some Lessons Learnt
Post date August 11, 2021 Post author S2 Research Team MoqHao Part 1.5: High-Level Trends of Recent Campaigns Targeting JapanUsing Pure Signal™ Intelligence to Determine the Scale and Impact of Threat Activity
Post date July 8, 2021 Post author S2 Research Team Enriching Threat Intelligence for the Carbine Loader Crypto-jacking CampaignHow Victimology Tells a Story beyond the Standard Crypto-jacking Tale
Post date July 2, 2021 Post author S2 Research Team Transparent Tribe APT Infrastructure MappingPart 2: A Deeper Dive into the Identification of CrimsonRAT Infrastructure October 2020 – June 2021
Post date May 19, 2021 Post author S2 Research Team Tracking BokBot (IcedID) InfrastructureMapping a Vast and Currently Active IcedID Network
Post date April 16, 2021 Post author S2 Research Team Transparent Tribe APT Infrastructure MappingPart 1: A High-Level Study of CrimsonRAT Infrastructure October 2020 – March 2021
Post date March 15, 2021 Post author S2 Research Team FIN8: BADHATCH Threat Indicator EnrichmentFIN8 research identifies ongoing campaigns against entities in Germany, Sweden and the US.
Post date January 26, 2021 Post author S2 Research Team GhostDNSbusters (Part 3)Illuminating GhostDNS Infrastructure
Post date January 20, 2021 Post author S2 Research Team MoqHao Part 1: Identifying Phishing InfrastructureCyber Reconnaissance with Team Cymru's Pure Signal™ Platform