Posts TaggedMaze

Case Study: Catching a Human-Operated Maze Ransomware Attack In Action

Maze operators tailor attacks to the victim’s environment to evade detection. We show how they operate, and reveal a decoded HDA payload among other IOCs.

Crimeware

Enter the Maze: Demystifying an Affiliate Involved in Maze (SNOW)

SentinelLabs profiles an affiliate involved with Maze ransomware and details the actor’s involvement with other crimeware families, including TrickBot.

Crimeware

Maze Ransomware Update: Extorting and Exposing Victims

Maze ransomware doesn’t just demand payment for a decryptor but exfiltrates victim data and threatens to leak it publicly if the target doesn’t pay up.

@FeverTreeMixers’s previous #endpoint security product required painstaking configuration and upkeep. They wanted… https://t.co/rrRGJshy059 hours ago
RT @LisaH_Jackson: .@ATT Launches new managed comprehensive endpoint security solution with @SentinelOne. Endpoint protection against #cybe…11 hours ago
RT @EFF: "At the time, [China's] was the only internet censorship in town. There was this thought—oh look, it's so quaint, a country trying…11 hours ago
#NTLM is still actively exploited. Follow each step in this #Vigilance #MDR analysis of a real-world attack and… https://t.co/S0TRyHl0OP12 hours ago

0 / 131

Posts TaggedMaze

Case Study: Catching a Human-Operated Maze Ransomware Attack In Action

Enter the Maze: Demystifying an Affiliate Involved in Maze (SNOW)

Maze Ransomware Update: Extorting and Exposing Victims

CVE-2021-21551- Hundreds Of Millions Of Dell Computers At Risk Due to Multiple BIOS Driver Privilege Escalation Flaws

Relaying Potatoes: Another Unexpected Privilege Escalation Vulnerability in Windows RPC Protocol

A Deep Dive into Zebrocy’s Dropper Docs

Adventures From UEFI Land: the Hunt For the S3 Boot Script