Fox-IT finds statistics of infected clients by ransomware Mole
A Mole exposing itself to sunlight
Turkish hacktivists targeting the Netherlands: high noise, low impact
Political tensions result in a surge in activity from several Turkish hacker groups
Detecting Ticketbleed (CVE-2016-9244)
Detection and mitigation for those running vulnerable F5 Appliances
2016 and 2017: plus ça change?
Looking back at 2016 and looking ahead to 2017
Fox-IT is observing botnet
Recent vulnerability in Eir D1000 Router used to spread updated version of Mirai DDoS bot
DDoS attacks of unprecedented scale. This is just the beginning!
Unsecured IoT devices pose threat to Internet availability
Ziggo ransomware phishing campaign still increasing in size
Fox-IT’s SOC observed fake Ziggo invoice e-mails linking to a ransomware variant known as TorrentLocker.
Mofang: A politically motivated information stealing adversary
Mofang (模仿, Mófa ̌ng, to imitate) is a threat actor that almost certainly operates out of China…
LinkedIn information used to spread banking malware in the Netherlands
Since early this morning (7th of June 2016, around 08:30 AM) the Fox-IT Security Operations Center…
Ransomware deployments after brute force RDP attack
Fox-IT has encountered various ways in which ransomware is being spread and activated.