Response to CISA Advisory (AA24-109A): #StopRansomware: Akira Ransomware

AttackIQ has released a new attack graph in response to the recently published CISA Advisory (AA24-109A) which disseminates known Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) associated to Akira ransomware, identified through FBI investigations and trusted third party reporting as recently as February 2024.

Authors: Francis Guibernau Ayelen Torello Read More
Target Locked: Operation Sharpshooter
AttackIQ Flex

Target Locked: Operation Sharpshooter

Operation Sharpshooter was a significant cyberattack by the Lazarus Group, targeting critical industries like finance, energy, and defense. Dive into the details of the attack and its implications and explore how AttackIQ Flex can assist in testing and strengthening your cybersecurity defenses.
Read More
Emulating the Southeast Asian Adversary OceanLotus
Adversary Emulation

Emulating the Southeast Asian Adversary OceanLotus

AttackIQ has released four new attack graphs that seek to emulate the behaviors exhibited by the politically motivated Vietnamese adversary known as OceanLotus during its most recent and prevalent activities.
Read More
Intercept the Adversary: Lazarus Group – Operation In(ter)ception
AttackIQ Flex

Intercept the Adversary: Lazarus Group – Operation In(ter)ception

Operation In(ter)ception reveals Lazarus Group's 2019 cyber campaign targeting military and aerospace organizations in Europe and the Middle East. Delve into the attacker's tactics on LinkedIn, their covert infiltration methods, and the complexities of their persistence strategies. Discover how AttackIQ Flex can empower your organization to fortify their defenses against such sophisticated threats through the use of agentless emulation testing.
Read More

Most Recent

Securing Remote Networks with AttackIQ Flex
AttackIQ Flex

Securing Remote Networks with AttackIQ Flex
The rise of remote work, branch networks, and the entwining of IoT and OT systems have created vast network footprints, making identifying vulnerabilities more challenging than ever. Cyber threats loom large, and with the stakes higher than ever, ensuring your defenses are impervious is paramount.
Read More
Testing for everyone
Adversary Emulation

Testing for everyone
AttackIQ has helped hundreds of companies across the global 2000 to conduct automated testing at scale, powered by MITRE ATT&CK. Building on a decade of success, we are now making testing available for everyone. Here's what that means.
Read More
Attack Graph Response to CISA Advisory AA23-165A: Understanding Ransomware Threat Actors: LockBit
Adversary Emulation

Attack Graph Response to CISA Advisory AA23-165A: Understanding Ransomware Threat Actors: LockBit
On June 14, 2023, the Cybersecurity and Infrastructure Security Agency (CISA) along with other US-based and international security organizations released a joint cybersecurity advisory (CSA) detailing the operations behind the LockBit ransomware attacks. AttackIQ has released a wide range of Attack Graphs emulating LockBit and other RaaS operators as part of CISA’s #StopRansomware campaign.
Read More
Attack Graph Response to CISA Advisory AA23-158A: #StopRansomware: CL0P Ransomware Gang Exploits CVE-2023-34362 MOVEit Vulnerability
Adversary Emulation

Attack Graph Response to CISA Advisory AA23-158A: #StopRansomware: CL0P Ransomware Gang Exploits CVE-2023-34362 MOVEit Vulnerability
AttackIQ has released a new attack graph and two network security validation scenarios in response to the recently published CISA Advisory (AA23-158A) detailing the CL0P Ransomware Gang. This actor also known as TA505, is a financially motivated and highly sophisticated criminal adversary considered to be a major player in the e-crime scene that has left a significant impact on the global cybersecurity landscape.
Read More