#StopRansomware [CISA AA25-050A] #StopRansomware: Ghost (Cring) Ransomware ByFrancis Guibernau February 20, 2025July 31, 2025
Adversary Emulation Emulating the Splintered Hunters International Ransomware ByFrancis Guibernau January 27, 2025July 31, 2025
Adversary Emulation Emulating the Tenacious Ako Ransomware ByFrancis Guibernau January 9, 2025July 31, 2025
Adversary Emulation Response to CISA Advisory (AA24-317A): 2023 Top Routinely Exploited Vulnerabilities ByAttackIQ Team November 13, 2024July 21, 2025
Adversary Emulation Emulating the Opportunistic and Lightweight Lumma Stealer ByFrancis Guibernau October 15, 2024July 31, 2025
Adversary Emulation Emulating the Petrifying Medusa Ransomware ByFrancis Guibernau September 19, 2024July 31, 2025
Adversary Emulation Emulating the Persistent and Stealthy Ebury Linux Malware ByAyelen Torello September 12, 2024July 31, 2025
Adversary Emulation Response to CISA Advisory (AA24-242A): #StopRansomware: RansomHub Ransomware ByFrancis Guibernau September 5, 2024July 31, 2025
Adversary Emulation Emulating the Extortionist Mallox Ransomware ByFrancis Guibernau August 30, 2024July 31, 2025
Adversary Emulation Emulating Sandworm’s Prestige Ransomware ByFrancis Guibernau August 2, 2024July 31, 2025
Adversary Emulation Emulating the Prickly Cactus Ransomware ByFrancis Guibernau July 25, 2024July 31, 2025
Adversary Emulation Emulating the Long-Term Extortionist Nefilim Ransomware ByFrancis Guibernau July 11, 2024July 31, 2025
Adversary Emulation Emulating the Open-Source Remote Access Trojan (RAT) AsyncRAT ByAyelen Torello May 24, 2024July 31, 2025
Adversary Emulation Response to CISA Advisory (AA24-131A): #StopRansomware: Black Basta ByFrancis Guibernau May 17, 2024July 31, 2025
Adversary Emulation Response to ScreenConnect’s Recent Zero-day Vulnerability Exploitation ByFrancis Guibernau March 8, 2024July 31, 2025
Adversary Emulation Response to the Revised CISA Advisory (AA23-353A): #StopRansomware: ALPHV BlackCat ByFrancis Guibernau March 7, 2024July 31, 2025
Adversary Emulation Response to CISA Advisory (AA24-016A): Known Indicators of Compromise Associated with Androxgh0st Malware ByFrancis Guibernau January 19, 2024July 31, 2025
Adversary Emulation Response to CISA Advisory (AA23-353A): #StopRansomware: ALPHV BlackCat ByFrancis Guibernau December 29, 2023July 31, 2025
#StopRansomware Response to CISA Advisory (AA23-352A): #StopRansomware: Play Ransomware ByFrancis Guibernau December 23, 2023July 31, 2025
Adversary Emulation Response to CISA Advisory (AA23-347A): Russian Foreign Intelligence Service (SVR) Exploiting JetBrains TeamCity CVE Globally ByFrancis Guibernau December 21, 2023July 31, 2025
#StopRansomware | Adversary Emulation Response to CISA Advisory (AA23-325A): #StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit CVE 2023-4966 Citrix Bleed Vulnerability ByAttackIQ Team November 27, 2023July 21, 2025
Adversary Emulation Response to CISA Advisory (AA23-320A): Scattered Spider ByAttackIQ Team November 21, 2023July 21, 2025
Adversary Emulation | AvosLocker | Ransomware | TTPs | US-CERT Alert | US-CERT Alert Response Attack Graph Response to CISA Advisory (AA23-284A): #StopRansomware: AvosLocker Ransomware ByFrancis Guibernau November 1, 2023July 31, 2025
![[CISA AA25-050A] #StopRansomware: Ghost (Cring) Ransomware](https://www.attackiq.com/wp-content/uploads/2025/02/col-blg-aa25-050a-bg-768x432.webp)
