Jim Walter, Author at SentinelOne

NetWalker Ransomware Update No Respite No English Required 2

NetWalker Ransomware: No Respite, No English Required

Jim Walter / June 4, 2020

NetWalker is following a now-familiar pattern: increased ransom demands, threats to leak victim data and relentless attacks during the COVID-19 pandemic.

labs

Why On-Device Detection Matters: New Ramsay Trojan Targets Air-Gapped Networks

Jim Walter / May 20, 2020

A new malware framework infects air-gapped devices and eschews traditional C2 callbacks. How does it work, and will your security tools detect it?

labs

The Good, the Bad and the Ugly in Cybersecurity – Week 20

Jim Walter / May 15, 2020

CISA name top 10 most commonly exploited vulns, Iran accused of attacking Israeli infrastructure, and Dallas school conference is hit by porno "Zoom bomb".

Technical Overview Of NEMTY Successor Nefilim Nephilim Ransomware 4

labs

Crimeware

Meet NEMTY Successor, Nefilim/Nephilim Ransomware

Jim Walter / May 4, 2020

Ransomware families NEMTY, Nefilim and Nephilim continue to evolve and merge, taking on aspects of other successful variants that aim to encrypt and extort.

labs

The Good, the Bad and the Ugly in Cybersecurity – Week 17

Jim Walter / April 24, 2020

83 phishing sites taken down in a single day with public cooperation, researcher reports critical bug in iOS Mail app and Maze gang go after Cognizant MSP.

Maze Ransomware Update Extorting And Exposing Victims 2

labs

Crimeware

Maze Ransomware Update: Extorting and Exposing Victims

Jim Walter / April 17, 2020

Maze ransomware doesn’t just demand payment for a decryptor but exfiltrates victim data and threatens to leak it publicly if the target doesn’t pay up.

labs

The Good, the Bad and the Ugly in Cybersecurity – Week 14

Jim Walter / April 3, 2020

Microsoft targets hospitals with free help to identify VPN bugs, Marriott Hotels suffers a major data breach and a hacker dumps 25 win32k bugs on April 1st.

Impact On Low To Mid Tier Criminals And Vendors 1

labs

Looking on the Bright Side of Coronavirus: Impact on Low-to-Mid-Tier Criminals and Vendors

Jim Walter / March 25, 2020

Criminals are also taking a hit from the Coronavirus pandemic as worldwide lockdowns disrupt the sale and distribution of illicit online goods and services.

labs

The Good, the Bad and the Ugly in Cybersecurity – Week 11

Jim Walter / March 13, 2020

Necurs botnet finally taken down in joint action, Windows SMB suffers from a crucial wormable RCE flaw, and a new COVID-19 phish kit plays on public fears.

DPRK HiddenCobra Update North Korean Malicious Cyber Activity 1

labs

Advanced Persistent Threat

DPRK Hidden Cobra Update: North Korean Malicious Cyber Activity

Jim Walter / February 25, 2020

New threat intelligence on the ever-expanding toolset of North Korean APT Hidden Cobra (Lazarus) including IoCs for RATs, beacons, persistence and more.