On August 31, 2021 we ran a joint webinar between VirusTotal and Kaspersky, with a focus on YARA rules best practices and real world examples. In this post, we answer your questions that we didn’t answer during webinar.
We continue to track the BlueNoroff group’s activities and this October we observed the adoption of new malware strains in its arsenal.
In this report, we compare the ROADSWEEP ransomware and ZEROCLEARE wiper versions used in two waves of attacks against Albanian government organizations.
While hunting for less common Deathstalker intrusions, we identified a new Janicab variant used in targeting legal entities in the Middle East throughout 2020.
This is our latest summary of advanced persistent threat (APT) activities, focusing on events that we observed during Q3 2022.