Web: https://securityboulevard.com/2022/01/who-is-the-network-access-broker-wazawaka/

Jan. 12, 2022, 5:17 a.m. | BrianKrebs

Security Boulevard securityboulevard.com

In a great many ransomware attacks, the criminals who pillage the victim's network are not the same crooks who gained the initial access to the victim organization. More commonly, the infected PC or stolen VPN credentials the gang used to break in were purchased from a cybercriminal middleman known as an initial access broker. This post examines some of the clues left behind by Wazawaka, the handle chosen by a major access broker in the Russian-speaking cybercrime scene.


The post …

902228 abakan abaza access breadcrumbs constella intelligence cs-arena.org darkside ddosis.ru devdelphi@yandex.ru domaintools flashpoint initial access broker kopyovo-a lockbit mikhail matveev mikhail mix matveev mix@devilart.net mixfb@yandex.ru ne'er-do-well news network ransomware security bloggers network uhodiransomware wazawaka who

More from securityboulevard.com / Security Boulevard

Head of Information Security

@ Canny | Remote

Information Technology Specialist (INFOSEC)

@ U.S. Securities & Exchange Commission | Washington, D.C.

Information Security Manager - $90K-$180K - MANAG002176

@ Sound Transit | Seattle, WA

Sr. Software Security Architect

@ SAS | Remote

Senior Incident Responder

@ CipherTechs, Inc. | Remote

Data Security DevOps Engineer Senior/Intermediate

@ University of Michigan - ITS | Ann Arbor, MI