Web: https://www.reddit.com/r/blueteamsec/comments/yzdq2d/analyzing_ttp_overlap_for_nine_recently_active/

Nov. 19, 2022, 2:57 p.m. | /u/Trop_Chaud

For [Blue|Purple] Teams in Cyber Defence reddit.com

This originates from a project looking at ransomware targeting schools, but most of these families have threatened a range of critical infrastructure & other industries too.

Each ransomware here has published extortion threats involving a school during the past year (41 total), and this trend is increasing: September & October were the [top two months](https://imgur.com/a/MuYwq7w) in that period by victim count. Vice [dominates](https://imgur.com/a/6HmEQEi) in terms of these victims, including in recent months. The ransomware covered here and associated count of …

blueteamsec ransomware ttp

Senior Cloud Security Engineer

@ HelloFresh | Berlin, Germany

Senior Security Engineer

@ Reverb | Remote, US

Sr. Product Manager - Cloud Security/CNAPP

@ Zscaler | Atlanta, GA, United States

ISSO - Security Delivery

@ Novetta | Columbia, MD

Junior Cyber Security Recruitment Consultant (possibility for work abroad)

@ Gradfuel | London, England, United Kingdom

Internship, Cybersecurity

@ Qontigo | Eschborn, Hessen, Germany

Security Administrator

@ Zero Hash | Melbourne, VIC - Remote

Cybersecurity Project Manager, Reactive Lead - Unit 42 Consulting (Remote)

@ Palo Alto Networks | Santa Clara, CA, United States

Consultant, GRC, Proactive Services (Unit 42) - Remote

@ Palo Alto Networks | New York City, United States

Senior Manager, Security Operations (Secure Access Engineering)

@ GitHub | Remote - United States

Junior Penetration Tester - Amsterdam

@ BreachLock | Amsterdam, North Holland, Netherlands

Senior Product Security Engineer

@ 8x8, Inc. | Remote, Romania