El secuestro de datos valiosos mediante sofisticadas técnicas de ransomware se ha convertido en un negocio altamente rentable para los ciberdelincuentes cambiando el enfoque.
Según un informe reciente, el grupo conocido como FIN11, que a lo largo de 2017-1018 se dirigió principalmente a sectores financieros y minoristas, ha realizado la transición de su arsenal en 2019 a la distribución de ransomware duplicando la extorsión de datos robados que amenaza a víctimas con divulgar datos públicamente si no pagan rescates.
FIN11 ha estado activo desde 2016 y sus miembros probablemente provengan de países de habla Rusa. Los metadatos encontrados en sus herramientas revelan el uso del alfabeto Cirílico donde el propio malware comprueba para evitar atacar sistemas configurados con idiomas de la CEI (Comunidad de Estados Independientes), una coalición de países de la ex Unión Soviética.
FIN11 ha realizado algunas de las campañas de distribución de malware más grandes en múltiples sectores en 2020, pasando a un modelo basado en el programa de ransomware llamado CLOP.
Lo que necesitas saber sobre el grupo FIN11:
- FIN11 utiliza correos de gran volumen con señuelos genéricos como órdenes de venta, extractos bancarios y facturas, pero también ataques dirigidos y personalizados en inglés, español, coreano y alemán con un número significativo de ataques a Alemania.
- Los métodos de entrega de malware cambian todos los meses para evadir la detección. Comenzó con archivos de Office infectados, luego uso de archivos adjuntos y ahora incluye URL en correos electrónicos HTML dirigidos a usuarios de Office en servidores remotos.
- En los últimos ataques de FIN11, los correos maliciosos tenían un archivo adjunto HTML que redirigía a las víctimas a dominios comprometidos, que las redirigía aún más a dominios controlados por atacantes que entregaron los archivos maliciosos de Office después de que los usuarios pasaran un desafío CAPTCHA. Es probable que esto se haya agregado para bloquear los análisis de URL automatizados por parte de productos y servicios de seguridad.
- Si una víctima parece interesante, después de la intrusión inicial, los atacantes FIN11 implementan múltiples puertas traseras con el objetivo de moverse lateralmente y obtener privilegios de administrador de dominio. Aunque sus herramientas exclusivas como Flawed Ammyy y MIXLABEL se utilizan para ganar el punto de apoyo inicial, la actividad de movimiento lateral implica el uso de muchas herramientas disponibles públicamente.
- A partir de este año, FIN11 también adoptó la táctica de robar datos y amenazar con liberarlos para obligar a las víctimas de ransomware a pagar. El grupo ha creado un sitio web oscuro donde han publicado datos parciales de empresas que se negaron a pagar.
Autor:
Mg. José Alfredo Carreón Romero - MSCS
-min.png) |
Más de 30 años de experiencia en Tecnología Informática, 22 de los cuales dedicados a Seguridad Informática. Es CEO de ENCRYPTED, profesor y autor del Curso Security Informatics enseñándolo en la Universidad de California y ahora en UTEC y TECSUP de Perú. Trabajó con Steve Jobs en Apple como Evangelista Tecnológico y fue Director de Marketing de Seguridad Informática en HP, SUN, Brocade y iS3. Maestría en Computer Science en el Instituto Tecnológico Chalmers de la Universidad de Gothemburg - Suecia. Conoce más de su trabajo aquí |
SecureIQ es un newsletter de análisis sobre los más recientes eventos de seguridad informática y ciberseguridad que tienen lugar en el nuevo mundo de Covid-19, distanciamiento social, comunicaciones virtuales / móviles y de uso intensivo de las redes sociales.
Únete a la comunidad virtual de ciberseguridad y obtén la información más actualizada de seguridad informática y ciberseguridad aquí
COMPARTE TU OPINIÓN
Escribe aquí tu comentario.
Wow, this page is a treasure trove of helpful tips and advice for anyone looking to improve their dating and relationship skills! I really appreciate how comprehensive and practical the content is - there's something here for everyone, no matter what stage of their romantic journey they're at. From communication strategies to self-care tips, this page has it all. I especially loved the section on building healthy boundaries - such an important but often overlooked aspect of relationships. Thank you for creating such a valuable resource, I'll definitely be bookmarking this for future reference!"
https://www.amolatinawomen.com/15-relationship-tips-from-people-who-tog…
https://www.amolatinanews.com/15-highly-useful-dating-tips-for-men
https://www.datingreview.online/dating-advice-for-women/
https://www.datingreview.co/the-advice-everyone-in-a-new-relationship/
https://www.datinggroup.in/top-online-premarital-counseling-services-to…
The best dating blog is a comprehensive resource that offers advice, insights, and stories about modern dating. It is a place where people can turn to for guidance and support as they navigate the sometimes confusing and challenging world of dating. The blog covers a wide range of topics related to dating, including tips for creating an attractive online dating profile, strategies for approaching and initiating conversations with potential partners, advice for managing expectations and dealing with rejection, and tips for maintaining a healthy and fulfilling relationship.
https://www.amolatinawomen.com/a-guide-to-the-best-free-dating-sites-in…
https://www.amolatinanews.com/10-tips-for-healthy-relationships
https://www.datingreview.online/what-makes-a-relationship-unhealthy
https://www.datingscam.co/christian-dating-advice/
https://www.datingreview.co/cool-first-date-ideas-from-classic-to-uniqu…
https://www.datinggroup.in/the-ultimate-relationship-app-revolutionizin…
The Power of Smile Dating Test
Smile Dating Test can be both exciting and nerve-wracking. The first impression you make on a potential partner can significantly impact the course of your relationship.
https://www.amolatinanews.com/the-power-of-smile-dating-test/
Smile Dating Test
How to win at the casino with $20
How to Win at the Casino with $20, When it comes to gambling, many people dream of hitting the jackpot and walking away from the casino.
https://www.onlinelasvegasreviews.com/how-to-win-at-the-casino-with-20
How to win at the casino with $20
Speed Dating Near Me: A Fast-Paced Way to Find Love
Look no further than speed dating near me! In this article, well explore the concept of speed dating, its benefits, how it works.
https://www.amolatinawomen.com/speed-dating-near-me-a-fast-paced-way-to…
speed dating near me
Exploring Entertainment Scene: Are There Casinos in Hawaii
Are There Casinos in Hawaii, a popular tourist destination known for its stunning natural beauty, idyllic beaches, and vibrant culture
https://www.pokercasinoslot.com/exploring-entertainment-scene-are-there…
Are there casinos in hawaii
Exploring Entertainment Scene: Are There Casinos in Hawaii
Are There Casinos in Hawaii, a popular tourist destination known for its stunning natural beauty, idyllic beaches, and vibrant culture
https://www.pokercasinoslot.com/exploring-entertainment-scene-are-there…
Are there casinos in hawaii
who is tom cruise dating
Who is Tom Cruise Dating? Tom Cruise, a renowned Hollywood actor known for his charismatic on-screen performances, has long captivated.
https://www.datingreview.online/who-is-tom-cruise-dating/
who is tom cruise dating
Is Online Poker Legal in Colorado | Slotcash Review
Is Online Poker Legal in Colorado, The world of online poker has seen a tremendous surge in popularity in recent years, captivating players.
https://www.slotscashreviews.com/is-online-poker-legal-in-colorado
is online poker legal in colorado
Tom Cruise Dating: A Closer Look at His Love Life
Tom Cruise Dating, the long-lasting actor identified for his mesmerizing performances, has captivated audiences worldwide. Beyond his skills on the large display, Tom Cruise's private life has additionally garnered vital consideration. From high-profile marriages to"
https://datingscam.co/tom-cruise-dating-a-closer-look-at-his-love-life/
tom cruise dating
Is Online Poker Legal in Virginia? | Slots Review 2023'
Is Online Poker Legal in Virginia? Online Poker has gained immense popularity in recent years, offering players the opportunity to enjoy their favorite card game conveniently from the comfort of their homes.
https://www.slots-review.com/is-online-poker-legal-in-virginia
is online poker legal in virginia
Is Online Poker Legal in Kansas? | 101CasinoReviews
Is Online Poker Legal in Kansas? Online poker has gained significant popularity in recent years, attracting players from all around the world. However, the legality of online poker varies from one jurisdiction to another.
https://www.101casinoreviews.com/is-online-poker-legal-in-kansas
is online poker legal in kansas
The Dog Lover’s Guide to Dating
Are you a dog lover looking for some romantic comedy with a canine twist? If so, “The Dog Lover’s Guide to Dating” is the perfect show for you! This delightful series combines the joy of finding love with the charm of our four-legged friends
https://www.datingreview.co/the-dog-lovers-guide-to-dating/
cast of the dog lover's guide to dating
Is Online Poker Legal in Kansas? | 101CasinoReviews
Is Online Poker Legal in Kansas? Online poker has gained significant popularity in recent years, attracting players from all around the world. However, the legality of online poker varies from one jurisdiction to another.
https://www.101casinoreviews.com/is-online-poker-legal-in-kansas
is online poker legal in kansas
What Kills Long-Distance Relationships | Datinggroup
What Kills Long-Distance Relationships, characterized by geographical separation between partners, can be both challenging and rewarding.
https://www.datinggroup.in/what-kills-long-distance-relationships
what kills long-distance relationships
Can You Cash a Casino Voucher Online? | Casino Poker
Can You Cash a Casino Voucher Online? Imagine winning a substantial amount of money at a casino and receiving a voucher instead of immediate cash. Many gamblers have found themselves in this situation, wondering how to turn their casino vouchers into real money.
https://www.casinopokerreviews.com/can-you-cash-a-casino-voucher-online
can you cash a casino voucher online
Who is more loyal male or female in a relationship
Who is More Loyal Male or Female In A Relationship. Loyalty is a fundamental aspect of any healthy and successful relationship. It is a quality that reflects a person’s faithfulness, commitment, and devotion to their partner.
https://www.anastesiadatefraud.com/who-is-more-loyal-male-or-female-in-…
who is more loyal male or female in a relationship
How to Start Over in a Relationship
How to Start Over in a Relationship. Starting over in a relationship can be a challenging but worthwhile journey. Whether you’re looking to rebuild after a major conflict or simply want to rejuvenate your connection, this article will provide you with practical tips and guidance. By reflecting on the relationship, communicating openly, rebuilding trust, and focusing on personal growth, you can embark on a new chapter together.
https://www.anastesiadatereviews.com/2023/06/05/how-to-start-over-in-a-…
how to start over in a relationship
The Model of Relationship Development Describes
The Model of Relationship Development Describes. Building and nurturing relationships is a fundamental aspect of human interaction. Whether in personal or professional settings, the quality of Relationships greatly impacts our lives.
The Model of Relationship Development Describes
https://www.amolatinreviews.com/the-model-of-relationship-development-d…
The Model of Relationship Development Describes
The Model of Relationship Development Describes. Building and nurturing relationships is a fundamental aspect of human interaction. Whether in personal or professional settings, the quality of Relationships greatly impacts our lives.
The Model of Relationship Development Describes
https://www.amolatinreviews.com/the-model-of-relationship-development-d…