Skip to Main Content

Resources

Providing you the latest industry-specific news and insights.

  • podcast

    Anatomy of an Incident Response

    Listen as we dive in to the many facets of an incident response to give you insight into the characteristics of a typical IR victim, IR planning, importance of strong passwords, the key to successful forensics and more!

    Read more
  • podcast

    Nation State Threats with Jim Jaeger

    In this episode, Kevin Smith and Stephen Ramey talk to Arete's chief cyber strategist, Jim Jaeger, about nation state threats, ways to keep your business safe from ransomware, and more!

    Read more
  • podcast

    Threat Intelligence with Evgueni Erchov, Part 2

    In this episode, Evgueni Erchov continues the discussion on Threat Intelligence; techniques, emerging threats, and our commitment to partner with law enforcement agencies to help gain a better understanding of the diverse threat actor environment.

    Read more
  • podcast

    Threat Intelligence with Evgueni Erchov Part 1

    In this episode, we interview Arete’s Head of Security Research and Strategy Evgueni Erchov about the most critical weapons used in cyber defense, which attackers target organizations, and how to thwart these attacks. 

    Read more
  • article

    Conti Ransomware is the New Ryuk?

    BACKGROUND Based on analysis of Conti ransomware, which was originally spotted in the wild in February of this year, the Arete Threat Intelligence team believes that this variant is being operated by the same group that conducted Ryuk…

    Read more
  • podcast

    Remote Working Cyber Risks

    Tune in to this week's episode as we sit down with Arete’s Director of Incident Response to delve into the cyber risks associated with remote work.

    Read more
  • article

    Universal Encryption

    Ransomware variants like Ryuk, WastedLocker, and Dopplepaymer are also file level encryption. These groups will gain access to the network and perform reconnaissance to identify the victim, understand their business, identify critical sys­tems, and…

    Read more
  • article

    System Specific Encryption

    Ransomware variants like Phobos, Dharma or CryLock are file level encryption. The TA gains access to the system, copies specific encryption executables onto the systems then runs the executables to encrypt the files. The results are files with a new…

    Read more
  • article

    Remote Access and IoT Search Engines

    Recently, Arete Incident Response Tiger Teams (“Arete IR”) have responded to an increased volume of ransomware incidents involving the Sodinikibi, Phobos, and Dharma ransomware variants. The threat actors deploying these variants are known to use…

    Read more
  • article

    Monero- Overview & Quick Facts

    OVERVIEW Recently, the threat group behind Sodinokibi ransomware publicly announced the switch from Bitcoin to accepting only Monero payments. The switch was motivated largely by the fact that Monero is inherently more difficult for law…

    Read more
  • article

    Maze Ransomware: Is Posting Data Counterproductive?

    Ransomware incidents dominated INFOSEC news in 2019.

    Read more