tac – Computer Security Articles

Enough attribution to count

August 8, 2023 admin attribution, detection, sophos x-ops, tac, threat activity cluster, threat research

Credit to Author: Chester Wisniewski| Date: Tue, 08 Aug 2023 10:01:37 +0000

Naming and shaming the bad guys can be gratifying, but for practical protection, Threat Activity Clusters are the way

Clustering attacker behavior reveals hidden patterns

August 8, 2023 admin black basta, Featured, hive, mdr, ransomware, royal, sophos x-ops, tac, threat activity cluster, threat research

Credit to Author: Andrew Brandt| Date: Tue, 08 Aug 2023 10:00:11 +0000

A collection of very specific behaviors, observed by Sophos X-Ops incident response analysts in the lead-up to four separate ransomware attacks in the first quarter of 2023, indicates an unexpected connection between the attacks. In the parlance of the Managed Detection and Response (MDR) team, the peculiarly similar details constitute a threat activity cluster that […]