Threat Spotlight: Data Extortion Ransomware Threats

A navy background with the white text "Data Extortion Ransomware Threats"

Over the last few years, the ransomware landscape has changed significantly. Between 2022 and 2023, ransomware attacks increased by more than 100% year-over-year, with more attacks consisting of double and triple extortion. At a high level, the categories of ransomware can be defined as: Modern ransomware attacks are no longer a lone individual sitting at […]

Pleins feux sur les menaces : nouvelle frontière des exploits de l'IA

Un fond bleu marine avec le texte blanc « New Frontier of AI Exploits ».

À mesure que l’apprentissage automatique (ML) et l’intelligence artificielle (IA) deviennent de plus en plus complexes, ils ouvrent de nouvelles possibilités aux organisations et aux acteurs de la menace. Au cours des quinze dernières années, les réseaux de neurones et les technologies d’apprentissage profond ont évolué à un rythme rapide. Au cours des quatre dernières années, depuis la sortie de GPT1 jusqu'à GPT4 aujourd'hui, les modèles d'IA ont évolué de […]

Pleins feux sur les menaces : Ransomware d’extorsion de données : principales tendances en 2023

data extortion ransomware key trends in 2023

Ransomware Trends Overview As ransomware’s fundamental nature shifts from encryption to data exfiltration, organizations’ data backup and recovery practices no longer protect them from attacks. Over the course of the past few years, the cybercriminal landscape changed too. More and more criminal ransomware organizations are adopting “as-a-Service” business models on the dark web which open the […]

Pleins feux sur les menaces : courtiers à accès initial aux forums de piratage russes

Un fond bleu marine avec le texte blanc en majuscules « Initial Access Brokers on Russian Hacking Forums ».

Russian Hacking Forum Trends Initial access brokers (IAB) are sophisticated, focused, and specialized threat actors that focus on finding and gaining access to corporate environments. Once they compromise these environments, they auction off or sell the access on dark web forums.  To date in 2023, more than 100 companies across 18 industries had access to […]

Pleins feux sur les menaces : le Dark Web et l'IA

Un fond bleu marine avec le texte blanc en majuscules « The Dark Web and AI ».

Executive Overview More than 200,000 credentials to AI language models are currently being sold on the dark web as part of stealer logs, files containing thousands of credentials derived from infostealer malware. This certainly raises the risk that employees will leak sensitive data into models, and then lose the credentials. However, we see even more […]

Pleins feux sur les menaces : Stealer Logs et accès d'entreprise

Un fond bleu marine avec le texte blanc en majuscules « Stealer Logs & Corporate Access ».

Executive Overview Over the last three years, infostealer malware variants have become a “popular trend” in the cybercriminal Malware-as-a-Service (MaaS) ecosystem. Doing precisely as their category implies, these malware variants steal information from users’ devices. After infecting the device, the malware employs various techniques to remain undetected while sending data to the malicious actors’ command […]

Pleins feux sur les menaces : réponse aux incidents et cybercriminalité en 2023

Un fond bleu marine avec le texte blanc "Incident Response & Cybercrime in 2023."

Executive Summary As the threat environment rapidly changes (and threat actors’ tactics along with it), what should cyber practitioners be on the lookout for?  Former Federal Bureau of Investigation (FBI) Deputy Director Andrew McCabe & former United States Postal Services (USPS) CISO Gregory Crabb spoke with Flare CEO Norman Menz and Director of Marketing Eric […]

Pleins feux sur les menaces : activités de cybercriminalité « légales »

A navy background with the white text "'Legal' Cybercrime Activities"

Executive Overview We often generalize threat actors as the “attackers” and cyber practitioners as the “defenders.” This simplification can work for many purposes, but what if we’re missing key relationships because of it? Not all activities related to cybercrime require secrecy or direct malicious intent, so cybercriminals utilize a vast network of contractors to develop […]

Pleins feux sur les menaces : le nouveau Web sombre ?

A navy background with the white text "The New Dark Web?"

Executive Overview Illicit Telegram channels have become a growing concern in the realm of cybercrime. Threat actors want to connect with each other in fast, reliable, and “anonymous” ways. Telegram has been their answer, and malicious actors are increasingly moving off of Tor and onto the instant messaging platform.  Flare Director of Marketing Eric Clay […]

Pleins feux sur les menaces : Triple Extorsion Ransomware

Un fond bleu marine avec le texte blanc "Triple Extortion Ransomware".

Executive Overview Threat actors have escalated the single extortion ransomware attack model to double and even triple extortion.  With the commodification of cybercrime, adversaries have significantly increased the sophistication levels of their operations, and therefore also the potential devastating impacts of a ransomware attack.  Flare Director of Marketing Eric Clay and CTO & Co-Founder Mathieu […]