AttackIQ Blog

Malware

    Adversary Emulation, Cybercrime, Malware

    Emulating the Always Persistent Cybercrime Malware Emotet

    February 17, 2023
    AttackIQ has released two new attack graphs emulating recent Emotet campaigns that resulted in data exfiltration and ransomware extortion. This release continues our focused research on shared e-crime malware used in attacks by multiple threat actors.
    Read More
    Blog Background
    Adversary Emulation, Cybersecurity, Malware, US-CERT Alert, US-CERT Alert Response

    Attack Graph Response to US-CERT Alert (AA22-216A): Testing Security Controls against 2021’s Top Malware Strains

    August 10, 2022
    AttackIQ’s Adversary Research Team has released two new assessments to test endpoint and network controls’ ability to prevent widely utilized malware families.
    Read More
    Attack Graph for SysJoker’s Linux Variant (Cron)
    Adversary Emulation, Cyberattack, Cybercrime, Malware

    Malware Emulation Attack Graph for SysJoker’s Linux Variant

    August 2, 2022
    AttackIQ’s Adversary Research Team has released a new Malware Emulation Attack Graph that emulates the Linux behaviors of the multi-platform backdoor known as SysJoker.
    Read More
    Adversary Emulation, Breach and Attack Simulation, Malware, Russia

    Attack Graph Response to US-CERT AA22-083A: Historical Russia-based Actors Targeting the Energy Sector 

    April 1, 2022
    AttackIQ has released a new attack graph for organizations to test and validate their cyberdefense effectiveness against the HAVEX strain of malware. This attack graph follows a pair of Department of Justice indictments of Russia-based threat actors and a new joint FBI-CISA Cybersecurity Advisory about HAVEX released last week. An enduring and dangerous threat, HAVEX targeted the energy and power sectors in 135 countries from 2012-2018, and the tactics and techniques within it continue to threaten organizations today.
    Read More