TLP AMBER ANNOUNCEMENT:
Compromised Email Accounts
Reporting Period: August 27, 2018
Action recommendation: Users should immediately place each of these email accounts in a block status in intrusion prevention systems.
Monday, August 27, 2018
Wapack Labs Keylogger Blacklist
Wapack Labs Sinkhole Blacklist
TLP AMBER ANNOUNCEMENT:
Reporting Period: August 27, 2018
Wapack Labs identified connections from 46,611 new unique IP addresses, which are checking in with one of the many Wapack Labs sinkhole domains.
Action recommendation: Users should immediately place each of these IP addresses in a monitor or block status in intrusion prevention systems.
WWW.WAPACKLABS.COM
This TLP AMBER report is available only to Red Sky Alliance members.
Wapack Labs identified connections from 46,611 new unique IP addresses, which are checking in with one of the many Wapack Labs sinkhole domains.
WWW.WAPACKLABS.COM
Foreshadow Attacks
To read the full article and find an archive of related reporting follow this link to READBOARD.
WWW.WAPACKLABS.COM
Wednesday, August 22, 2018
Wapack Labs Keylogger Blacklist
TLP AMBER ANNOUNCEMENT:
Compromised Email Accounts
Reporting Period: August 20, 2018
Action recommendation: Users should immediately place each of these email accounts in a block status in intrusion prevention systems.
Wapack Labs Sinkhole Blacklist
TLP AMBER ANNOUNCEMENT:
Reporting Period: August 20, 2018
Wapack Labs identified connections from 32,486 new unique IP addresses, which are checking in with one of the many Wapack Labs sinkhole domains.
Action recommendation: Users should immediately place each of these IP addresses in a monitor or block status in intrusion prevention systems.
WWW.WAPACKLABS.COM
WWW.WAPACKLABS.COM
Tuesday, August 14, 2018
SAMSAM Ransomware
SamSam is an example of a manually controlled ransomware, which has been recently identified by researchers.[1] SamSam ransomware is unique in its nature due to targeted victims and large ransom demands. The ransomware is active since December 2015 and large organizations including the City of Atlanta, Colorado Department of Transportation, several hospitals and educational institutions, have been successfully attacked.To read the full article and find an archive of related reporting follow this link to READBOARD.
WWW.WAPACKLABS.COM
Wapack Labs Sinkhole Blacklist
TLP AMBER ANNOUNCEMENT:
Reporting Period: August 14, 2018
Wapack Labs identified connections from 33,922 new unique IP addresses, which are checking in with one of the many Wapack Labs sinkhole domains.
Action recommendation: Users should immediately place each of these IP addresses in a monitor or block status in intrusion prevention systems.
WWW.WAPACKLABS.COM
WWW.WAPACKLABS.COM
Wapack Labs Keylogger Blacklist
TLP AMBER ANNOUNCEMENT:
Compromised Email Accounts
Reporting Period: August 14, 2018
Action recommendation: Users should immediately place each of these email accounts in a block status in intrusion prevention systems.
Friday, August 10, 2018
Wapack Labs Keylogger Blacklist
TLP AMBER ANNOUNCEMENT:
Compromised Email Accounts
Reporting Period: August 6, 2018
Action recommendation: Users should immediately place each of these email accounts in a block status in intrusion prevention systems.
Wapack Labs Sinkhole Blacklist
TLP AMBER ANNOUNCEMENT:
Reporting Period: August 6, 2018
Wapack Labs identified connections from 47,204 new unique IP addresses, which are checking in with one of the many Wapack Labs sinkhole domains.
Action recommendation: Users should immediately place each of these IP addresses in a monitor or block status in intrusion prevention systems.
WWW.WAPACKLABS.COM
WWW.WAPACKLABS.COM
Tuesday, August 7, 2018
Predictor Pain & Hawkeye; Still at It
To read the full article and find an archive of related reporting follow this link to READBOARD.
WWW.WAPACKLABS.COM
Subscribe to:
Comments (Atom)