#StopRansomware Archives

Updated Response to CISA Advisory (AA23-352A): #StopRansomware: Play Ransomware

Francis Guibernau | June 12, 2025 | #StopRansomware, adversary emulation, Broad-Based Attacks, Play, Playcrypt, Ransomware, ransomware as a service

AttackIQ has released an updated attack graph in response to the recently revised CISA Advisory (AA23-352A) which disseminates Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) associated with the Play ...

AttackIQ

Response to CISA Advisory (AA25-071A): #StopRansomware: Medusa Ransomware

Ayelen Torello | March 13, 2025 | #StopRansomware, adversary emulation, Broad-Based Attacks, cisa, Medusa, Ransomware

AttackIQ has released a new assessment template in response to the CISA Advisory (AA25-071A) published on March 12, 2025, which details new behaviors exhibited by Medusa Ransomware. The post Response to CISA ...

AttackIQ

[CISA AA25-050A] #StopRansomware: Ghost (Cring) Ransomware

Francis Guibernau | February 20, 2025 | #StopRansomware, Attack Graph, Broad-Based Attacks, cisa, CISA Alert, Cring, Ghost, Indicators of Compromise (IOCs), Ransomware, TTPs

AttackIQ has released a new attack graph in response to the CISA Advisory (AA25-050A) published on February 19, 2025, which disseminates known Ghost Ransomware Tactics, Techniques, and Procedures (TTPs) and Indicators of ...

AttackIQ

Updated Response to CISA Advisory (AA23-136A): #StopRansomware: BianLian Ransomware Group

Ayelen Torello | January 16, 2025 | #StopRansomware, adversary emulation, BianLian, CISA Alert, Construction, Energy, Professional Services, Ransomware, Resources & Utilities

AttackIQ has released an updated attack graph in response to the recently revised CISA Advisory (AA23-136A) that disseminates known BianLian ransomware group Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) ...

AttackIQ

Updated Response to CISA Advisory (AA23-136A): #StopRansomware: BianLian Ransomware Group

Ayelen Torello | January 16, 2025 | #StopRansomware, adversary emulation, BianLian, CISA Alert, Construction, Energy, Professional Services, Ransomware, Resources & Utilities

AttackIQ

Response to CISA Advisory (AA24-242A): #StopRansomware: RansomHub Ransomware

Francis Guibernau | September 5, 2024 | #StopRansomware, adversary emulation, Broad-Based Attacks, RansomHub, Ransomware, ransomware as a service

AttackIQ has released a new assessment template in response to the CISA Advisory (AA24-207A) published on August 29, 2024, that disseminates known RansomHub ransomware IOCs and TTPs that have been identified through ...

AttackIQ

Bryan Vorndran, assistant director of the FBI’s Cyber Division, standing in front of a U.S. flag, looking stern

LockBit Victim? Ask FBI for Your Ransomware Key

Spy warez: Assistant director of the FBI’s Cyber Division Bryan Vorndran (pictured) might have the key to unscramble your files ...

Security Boulevard

Response to CISA Advisory (AA24-060A): #StopRansomware: Phobos Ransomware

Francis Guibernau | June 5, 2024 | #StopRansomware, adversary emulation, CISA Alert, Phobos, Ransomware, ransomware as a service

AttackIQ has released a new attack graph in response to the CISA Advisory (AA24-060A) published on February 29, 2024, which disseminates known Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) ...

AttackIQ

Response to CISA Advisory (AA24-131A): #StopRansomware: Black Basta

Francis Guibernau | May 17, 2024 | #StopRansomware, adversary emulation, Black Basta, Broad-Based Attacks, CISA Alert, Critical Infrastructure, healthcare, Indicators of Compromise (IOCs), Public Health, Ransomware, TTPs

AttackIQ has released a new attack graph in response to the recently published CISA Advisory (AA24-131A) which disseminates known Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) associated to Black ...

AttackIQ