Skip to Main Content

Our Insights

Providing you the latest industry-specific news and insights.

  • article

    Egregor: The Ghost of Soviet Bears Past Haunts On

    By Adam Brown and Harold Rodriguez, Arete Cyber Threat Intelligence Team Ransomware variants come. Ransomware variants go. And while Egregor may have only recently surfaced, it is by no means a fly-by-night operation. In fact, one could argue that…

    Read more
  • article

    The Road Back: Recovery from a Malware Attack in the Long Term

    Arete Incident Response is currently answering the call of duty for about 60 companies per month who have experienced malware intrusions.  These are mostly ransomware or business email compromise attacks.  Arete’s primary goal is to restore what was…

    Read more
  • article

    Conti Ransomware is the New Ryuk?

    BACKGROUND Based on analysis of Conti ransomware, which was originally spotted in the wild in February of this year, the Arete Threat Intelligence team believes that this variant is being operated by the same group that conducted Ryuk…

    Read more
  • article

    Universal Encryption

    Ransomware variants like Ryuk, WastedLocker, and Dopplepaymer are also file level encryption. These groups will gain access to the network and perform reconnaissance to identify the victim, understand their business, identify critical sys­tems, and…

    Read more
  • article

    System Specific Encryption

    Ransomware variants like Phobos, Dharma or CryLock are file level encryption. The TA gains access to the system, copies specific encryption executables onto the systems then runs the executables to encrypt the files. The results are files with a new…

    Read more
  • article

    Maze Ransomware: Is Posting Data Counterproductive?

    Ransomware incidents dominated INFOSEC news in 2019. Penetration methods continued to evolve, attacks became more targeted and ransom demands continued to rise. A major shift in attacker tactics happened in early December when the group behind the…

    Read more
  • article

    What To Do When A Hacker Encrypts Your Data

    What should your first step be when a hacker cracks your system? Evgueni Erchov, Arete's head of security research & strategy shares insight with Risk & Insrance's Autumn Demberger.

    Read more