Publications

Microsoft pays up

Microsoft has announced that the $250,000 reward which was on the head of the Sasser author will be handed out to the two people who have lead to the arrest of Sven Jaschan.
The money will be split in two, which means each person gets $125,000.

This is a bit surprising as shortly after Jaschan’s arrest, sources claimed that MS wouldn’t pay up due to an alledged connection between Jaschan and the two individuals. Apparently this is not the case.

I’m still in doubt whether Jaschan would have received a (significantly) higher punishment if he had been 18 instead of 17.

In the AV industry there are some very young individuals at pretty important places which require quite some sense of responsibility.
Yet the verdicts which young blackhats, minor or no minor, receive are mild. Their age, and lacking sense of responsibility because of that age, play a great part in the judges their rulings.

Those things don’t add up to me.

Microsoft pays up

Your email address will not be published.

 

Reports

Kimsuky’s GoldDragon cluster and its C2 operations

Kimsuky (also known as Thallium, Black Banshee and Velvet Chollima) is a prolific and active threat actor primarily targeting Korea-related entities. In early 2022, we observed this group was attacking the media and a think-tank in South Korea.

Andariel deploys DTrack and Maui ransomware

Earlier, the CISA published an alert related to a Stairwell report, “Maui Ransomware.” Our data should openly help solidify the attribution of the Maui ransomware incident to the Korean-speaking APT Andariel, also known as Silent Chollima and Stonefly.

Subscribe to our weekly e-mails

The hottest research right in your inbox