all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Buzzing on Christmas Eve: Trigona Ransomware in 3 Hours

Add to bookmarks
Jan. 29, 2024, 12:52 a.m. | editor

The DFIR Report thedfirreport.com

Key Takeaways In late December 2022, we observed threat actors exploiting a publicly exposed Remote Desktop Protocol (RDP) host, leading to data exfiltration and the deployment of Trigona ransomware. On … Read More


The post Buzzing on Christmas Eve: Trigona Ransomware in 3 Hours appeared first on The DFIR Report.

christmas data data exfiltration december deployment desktop dfir eve exfiltrate data exfiltration exploiting exposed host key protocol ransomware rdp remote desktop remote desktop protocol report takeaways the dfir report threat threat actors trigona trigona ransomware

Visit resource

More from thedfirreport.com / The DFIR Report

From IcedID to Dagon Locker Ransomware in 29 Days 3 days, 11 hours ago | thedfirreport.com
adfind august beacon campaign +16
From OneNote to RansomNote: An Ice Cold Intrusion 1 month ago | thedfirreport.com
adfind cobalt cobalt strike cold +26
Threat Brief: WordPress Exploit Leads to Godzilla Web Shell, Discovery & New CVE 1 month, 4 weeks ago | thedfirreport.com
amp briefs customers cve +9
SEO Poisoning to Domain Control: The Gootloader Saga Continues 2 months ago | thedfirreport.com
amp audio can control +17
Buzzing on Christmas Eve: Trigona Ransomware in 3 Hours 3 months ago | thedfirreport.com
christmas data data exfiltration december +22
Lets Open(Dir) Some Presents: An Analysis of a Persistent Actor’s Activity 4 months, 2 weeks ago | thedfirreport.com
actor analysis data don +8
SQL Brute Force leads to Bluesky Ransomware 4 months, 4 weeks ago | thedfirreport.com
bluesky bluesky ransomware brute cobaltstrike +15
Netsupport Intrusion Results in Domain Compromise 6 months ago | thedfirreport.com
access compromise dfir domain +14
From ScreenConnect to Hive Ransomware in 61 hours 7 months, 1 week ago | thedfirreport.com
adversarial cobaltstrike dfir exploitation +13

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Premium Hub - CoE: Business Process Senior Consultant, SAP Security Role and Authorisations & GRC

@ SAP | Dublin 24, IE, D24WA02
View on infosec-jobs.com

Product Security Response Engineer

@ Intel | CRI - Belen, Heredia
View on infosec-jobs.com

Application Security Architect

@ Uni Systems | Brussels, Brussels, Belgium
View on infosec-jobs.com

Sr Product Security Engineer

@ ServiceNow | Hyderabad, India
View on infosec-jobs.com

Analyst, Cybersecurity & Technology (Initial Application Deadline May 20th, Final Deadline May 31st)

@ FiscalNote | United Kingdom (UK)
View on infosec-jobs.com
View more jobs