Anatomy

The Anatomy of an ALPHA SPIDER Ransomware Attack

Mar 17, 2024 by iHash Leave a Comment

ALPHA SPIDER is the adversary behind the development and operation of the Alphv ransomware as a service (RaaS). Over the last year, ALPHA SPIDER affiliates have been leveraging a variety of novel techniques as part of their ransomware operations. CrowdStrike Services has observed techniques such as the usage of NTFS Alternate Data Streams for hiding a reverse SSH tool, … [Read more...] about The Anatomy of an ALPHA SPIDER Ransomware Attack

The Anatomy of Wiper Malware, Part 4: Helper Techniques

Oct 29, 2022 by iHash Leave a Comment

This is the fourth blog post in a four-part series. Read Part 1 | Part 2 | Part 3. In Part 3, CrowdStrike’s Endpoint Protection Content Research Team covered the finer points of Input/Output Control (IOCTL) usage by various wipers. The fourth and final part of the wiper series covers some of the rarely used “helper” techniques implemented by wipers, which achieve secondary … [Read more...] about The Anatomy of Wiper Malware, Part 4: Helper Techniques

The Anatomy of Wiper Malware, Part 1: Common Techniques

Aug 27, 2022 by iHash Leave a Comment

This blog post is the first in a four-part series in which CrowdStrike’s Endpoint Protection Content Research Team will dive into various wipers discovered by the security community over the past 10 years. Our goal is to review in depth the various techniques employed by wipers that target the Windows operating system. Background A wiper is a type of malware with a single … [Read more...] about The Anatomy of Wiper Malware, Part 1: Common Techniques

The Anatomy of Wiper Malware, Part 2: Third-Party Drivers

Aug 25, 2022 by iHash Leave a Comment

In Part 1 of this four-part blog series examining wiper malware, we introduced the topic of wipers, reviewed their recent history and presented common adversary techniques that leverage wipers to destroy system data. In Part 2, CrowdStrike’s Endpoint Protection Content Research Team discusses how threat actors have used legitimate third-party drivers to bypass the visibility … [Read more...] about The Anatomy of Wiper Malware, Part 2: Third-Party Drivers

Anatomy of a Breach: Preventing the Next Advanced Attack

Jul 13, 2021 by iHash Leave a Comment

Your company’s stock price nosedives by 15% in a single day. You get a flood of messages from concerned family and friends about your company. Your company’s name is all over the news. Your colleagues exchange hundreds of frantic messages while trying to figure out what happened and how to respond. This is what it looks like when your organization is breached. I know this from … [Read more...] about Anatomy of a Breach: Preventing the Next Advanced Attack

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54

The Anatomy of an ALPHA SPIDER Ransomware Attack

The Anatomy of Wiper Malware, Part 4: Helper Techniques

The Anatomy of Wiper Malware, Part 1: Common Techniques

The Anatomy of Wiper Malware, Part 2: Third-Party Drivers

Anatomy of a Breach: Preventing the Next Advanced Attack