 |
| www.opensources.info |
On 25 August 2016, Wapack Labs
identified an active malware actor on the underground web site GreySec[.]net. This Malware actor has solicited hacked open
source information including: a Python based keylogger, Python ransomware and
bash scripts purposed for system enumeration and exfiltration. We are
providing this information for your situational awareness.
Publication
date: 26
August 2016
Handling
requirements: Traffic
light protocol (TLP) GREEN
Attribution/Threat
Actors: Malicious hacker TTPs
Actor Type: Tier II
or III
Potential Targets: USA
/ International
Past Reporting: Red Sky Alliance: n/a
The full attribution report has been published in its entirety in the Red Sky Alliance portal. For more information please contact the lab directly at 844-4-WAPACK, 603-606-1246, or feedback@wapacklabs.com.
About Wapack Labs
Wapack Labs, located in New Boston, NH is a Cyber Threat Analysis and Intelligence organization supporting the Red Sky Alliance, the FS-ISAC and individual organizations by offering expert level targeted intelligence analysis answering some of the hardest questions in Cyber. Wapack Labs’ engineers, researchers and analysts use deep analysis techniques and visualization to design and deliver transformational cyber-security analysis tools that fuse open source and proprietary information. The intelligence derived from these tools and techniques serve as the foundation of Wapack Labs’ information reporting to the cyber-security teams of its customers and industry partners located around the world.
