Conti Ransomware Group Cobalt Strike C2 Analysis & Persistence (Anydesk, Atera, Splash)

Conti is a Ransomware-as-a-Service that was first observed in December 2019 and has been distributed via TrickBot. It has been used against major corporations and government agencies, particularly those in North America. As with other ransomware families, actors using Conti steal sensitive files and information from compromised networks and…

--

--

--

Security Researcher [RED&BLUE]

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

5 Evidences That You Are Successful at THREAT INTELLIGENCE

AWS HoneyKeys — Fast and reliable way to detect intrusions on servers

Automatic Authentication Signatures For Web3

Exploit Development Windows Part — 3

Get an extra 10% weekend bonus for buying PXP (June 19 and June 20, 2021)

Server-Side Request Forgery (SSRF)

Will World War III be a Cyberwar?

{UPDATE} Mahjong - Choose the Mahjong tile Hack Free Resources Generator

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Michael Koczwara

Michael Koczwara

Security Researcher [RED&BLUE]

More from Medium

Critical CVEs: Why Chasing Squirrels is Driving the Whole Industry Nuts

LetsDefend: Hijacked NPM Package/Supply Chain Compromise

SIEM: Splunk Fundamentals

SOC104 — Malware Detected Alert: A Walkthrough