Halcyon Threat Insights 004: April 2024 Ransomware Report
ID: 9290e2a0-7e17-59cb-b310-ff0894bec669
STIX ID: report--9290e2a0-7e17-59cb-b310-ff0894bec669
Feed Name: Halcyon Blog
Threat Score
Halcyon's April 2024 threat intelligence briefing details trends in ransomware activity, enumerating trojan precursors (Doina, Convagent, Mediaarena, Bitman), prominent ransomware families (TeslaCrypt, MBRLock, Thanos, AvosLocker), and the prolific Play RaaS group—highlighting exploited vulnerabilities (Exchange CVEs, Fortinet SSL VPN), common post-compromise tooling (Cobalt Strike, SystemBC, Mimikatz), double-extortion data-leak tactics, and campaigns targeting MSPs and various industry verticals.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.