Publications

Nyxem.e status to green

We have decided to change the alert for Nyxem.e from red (severe risk) to green (informational).

There are still probably quite a few infected machines out there. However, as the destructive payload will only activate when a machine is (re)booted on the 3rd of each month, the direct danger is gone, for now.

Nyxem.e status to green

Your email address will not be published.

 

Reports

Andariel deploys DTrack and Maui ransomware

Earlier, the CISA published an alert related to a Stairwell report, “Maui Ransomware.” Our data should openly help solidify the attribution of the Maui ransomware incident to the Korean-speaking APT Andariel, also known as Silent Chollima and Stonefly.

APT trends report Q2 2022

This is our latest summary of advanced persistent threat (APT) activity, focusing on events that we observed during Q2 2022.

Subscribe to our weekly e-mails

The hottest research right in your inbox