Home » Threat Intelligence » MITRE ATT&CK and the 2017 FSB Indictment

× Share this Presentation

Facebook
Twitter
Email
LinkedIn

MITRE ATT&CK and the 2017 FSB Indictment

September 21, 2018

Share this Report
Facebook
Twitter
Email
LinkedIn

As with our previous work on the GRU, FIN7, and North Korean indictments, we’ve used the Mitre ATT&CK™ framework to play back the findings from the indictment.

Read our full blog post here: https://www.digitalshadows.com/blog-and-research/the-2017-fsb-indictment-and-mitre-attack/

Sextortion 2.0: A New Lure

Back in September we released a blog about the large volume of sextortion email campaigns that were hitting...

The 2017 FSB indictment and Mitre ATT&CK™

On February 28th, 2017 the US Department of Justice indicted a notorious hacker, Alexsey Belan, and his FS...

Other content in this Stream

Threat Intelligence

Understand threat actors, their behavior, and the assets they target.

Read Report

Weekly Intelligence Summary 28 Nov - 05 Dec 2019

The Digital Shadows Intelligence Team discusses the risks of information exposure by Internet users, challenging contemporary thinking about standard security practices.

Read Report

Forums are Forever – Part 1: Cybercrime Never Dies

The survival of the cybercriminal forum in the face of new, more secure technologies and constant pressure from law enforcement does not come as a surprise to researchers at Digital Shadows.

Read Post

The Modern Cybercriminal Forum

We took a deep-dive into the cybercriminal underground to investigate the persistence of forums, uncovering several reasons they remain attractive amid appealing alternatives.

Read Report

Forums are Forever – Part 2: Shaken, but not Stirred

Part 2 looks at cybercriminal forum users’ resistance to moving away from the forum model.

Read Post

A Threat Intelligence Analyst’s Guide to Today’s Sources of Bias

This blog seeks to rebalance intelligence tradecraft discussions by highlighting some of the less glamorous everyday sources of bias that are too often overlooked.

Read Post

Cybercriminal Forum Research, Mixcloud Breach, and International Crackdown On RAT Spyware

New cybercrime research we put out on the Modern Cybercriminal Forum and how the rise of alternative technologies hasn’t spelled the end of forums, which seem to be prospering against all odds.

Read Post

Black Friday Deals on the Dark Web: A cybercriminal shopper’s paradise

Criminals are conducting Black Friday sales amongst themselves, many of which are on the dark web.

Read Post

Typosquatting and the 2020 U.S. Presidential election: Cyberspace as the new political battleground

we detected over 550 typosquats for the 34 candidate- and election-related domains we gathered from open-source research. Not every single one was something interesting; most of the time the typosquat

Read Post

Dark Web Marketplace Trends 2019

Our team of researchers recently dug into the different popular dark web marketplaces to understand which marketplaces are gaining the most traction and what is being sold on these cybercriminal platf

Read Report

Probiv: The missing pieces to a cybercriminal’s puzzle

in the cybercriminal underground, there’s a service (and even a dedicated platform) that enables anyone to obtain sensitive information via insiders: Probiv.

Read Post

Black Friday Deals On The Dark Web, Phineas Fisher Manifesto, And DarkMarket

Adam Cook and Viktoria Austin talk through the security and threat intelligence stories of this week including an update around Phineas Fisher, where the hacker offered up to $100k in what they...

Read Post

DarkMarket’s Feminist Flight Towards Equality and the Curious Case of Canaries

DarkMarket, an English-speaking “boutique marketplace”, has taken two very noticeable approaches to these challenges, with claims to be the first female-run market, and the introduction of new trust m

Read Post

Cybercriminal credit card stores: Is Brian out of the club?

In this blog, we determine whether this targeted attack on BriansClub will impact the wider cybercriminal credit carding landscape, and speculate whether it could galvanize the community to push anoth

Read Post

Top Threat Intelligence Podcasts to Add to Your Playlist

Looking for some new threat intelligence podcasts to add to your playlist? Look no further! Our Photon Threat Intelligence Research team shares their top tracks.

Read Post

BSidesDFW 2019: OSINT Workshop Recap

A few Saturdays ago, we had the pleasure of presenting at BSidesDFW in Fort Worth, Texas. We were all OSINT all the time; we did one OSINT talk and three OSINT workshops at the conference.

Read Post

10:00

Typosquatting and the 2020 U.S. Presidential election

Photon Research Team thought it would be interesting to use this pool of candidates as a backdrop for research into typosquatted domains

Watch Video

Understanding the Different Cybercriminal Platforms: AVCs, Marketplaces, and Forums

We’re all familiar with forums and marketplaces (we use them in our daily lives – think Reddit, eBay, or Amazon, for example), but what exactly is an AVC? What do they look like?

Read Post

NCSC Cyber Threat Trends Report: Analysis of Attacks Across UK Industries

The United Kingdom’s National Cyber Security Centre (NCSC) recently released their Incident trends report (October 2018 – April 2019) which ...

Read Post

ANU Breach Report: Mapping to Mitre ATT&CK Framework

We decided to map this intrusion to the Mitre ATT&CK framework, as we have done previously for:

Read Post

Return to Home

Welcome to our Digital Risk Protection and Threat Intelligence Resources Center

MITRE ATT&CK and the 2017 FSB Indictment

Previous Post

Next Post