×

Register to Access Intelligence Summary

First Name
Last Name
Job Title
Company
Country
State
Thank you!
Error - something went wrong!
   

Weekly Intelligence Summary 18 June

June 18, 2021

A newly identified advanced persistent threat (APT) group, “Agrius”, has been exposed as the perpetrator of destructive attacks against Israeli organizations since late 2020. Although operating with similar tactics, techniques, and procedures (TTPs) as other APT groups, Agrius has been updating its wiper malware with ransomware functionality. This is likely an attempt to mask its activity’s true (destructive) nature, as well as complicate attribution. Agrius’s TTPs and targeting have shown parallels with certain Iranian state-associated APT groups, although an Agrius-Iran link cannot be definitively confirmed. Regardless of the group’s origin, its use of ransomware as a “false flag” demonstrates ransomware’s growing threat and appeal to a variety of threat actors.

Previous Report
Weekly Intelligence Summary 25 June
Weekly Intelligence Summary 25 June

Several Clop members were arrested in association with money laundering, and the officials seized infrastru...

Next Report
Weekly Intelligence Summary 11 June
Weekly Intelligence Summary 11 June

The notorious Russia-based ransomware group “REvil” (aka Sodinokibi) has been blamed for the latest high-pr...

×

Want these
Threat Intelligence reports sent straight to your inbox?

Subscribe below!

First Name
Last Name
Company
Country
State- optional
Job Title
Thank you!
Error - something went wrong!