Blueliv Intelligence Briefing

Your cybersecurity news summary

Friday,   May 21st,   2021

Welcome to today’s intelligence briefing, covering noteworthy items on the cybersecurity news agenda.

Find these stories on the Blueliv Threat Exchange Network, a global community of thousands of cybersecurity experts, IT professionals and academics. Membership is free.

Read the latest research blogs from the Blueliv Labs team.

Darkside Ransomware Operations Uncovered

Since August 2020, the creators of DARKSIDE ransomware and their affiliates have launched a global crime spree affecting organizations in more than 15 countries and multiple industry verticals. These actors conduct multifaceted extortion where data is both exfiltrated and encrypted in place, allowing them to demand payment for unlocking and the non-release of stolen data to exert more pressure on victims. While the threat actors commonly relied on commercially available and legitimate tools to facilitate various stages of their operations, at least in one case they also employed a now patched zero-day vulnerability. Most of the victim organizations were based in the United States and span across multiple sectors, including financial services, legal, manufacturing, professional services, retail, and technology.

Demo Free Trial MSSP
Program