Color by numbers: inside a Dharma ransomware-as-a-service attack

Thursday, August 13th, 2020

Welcome to today’s intelligence briefing, covering noteworthy items on the cybersecurity news agenda.

Find these stories on the Blueliv Threat Exchange Network, a global community of thousands of cybersecurity experts, IT professionals and academics. Membership is free.

Read the latest research blogs from the Blueliv Labs team.

Intelligence Briefing

Ransomware

Color by numbers: inside a Dharma ransomware-as-a-service attack

The actors using this particular RaaS are equipped with a package of pre-built scripts, internal Windows tools, legitimate third-party “freeware” software, well-known security tools and publicly-available exploits, integrated together through bespoke PowerShell, batch, and AutoIT scripts. This pre-packaged toolkit, combined with back-end technical support, significantly extends the reach of the Dharma RaaS operators, allowing them to profit while their affiliates do the hands-on-keyboard work of breaching networks, dropping ransomware, and managing “customer service” with the victims. Learn more >

Blueliv Intelligence Briefing

Your cybersecurity news summary

Intelligence Briefing

Ransomware

Blueliv Intelligence Briefing

Your cybersecurity news summary

Intelligence Briefing Ransomware

Intelligence Briefing

Ransomware