A Dharma Initiative: How OverWatch Threat Hunting Uncovered a Widespread Targeted Ransomware Affiliate Network
- Multiple Speakers
- Karl Scheuerman
- Aaron Pickett
Runtime: 22:40
Since 2019, we’ve seen a dramatic increase in targeted ransomware attacks. One collection of criminals conducting these intrusions have used shared tactics to deploy Dharma ransomware. Dharma is typically deployed using a Ransomware-as-a-Service franchise model. OverWatch threat hunting has uncovered ongoing attempts by Dharma ransomware affiliates to attack a diverse range of organizations worldwide throughout 2019 and into 2020. This presentation will provide details on our findings, featuring threat hunting techniques that revealed the string of attacks. By sharing our insights, the security community will be better prepared to tackle the targeted ransomware intrusions currently wreaking havoc across the globe.
Related Videos
Drinking from the Tap: Network Security Monitoring
Threat Hunting & Incident Response
Drinking from the Tap: Network Security Monitoring
Multiple Speakers
CrowdStrike
23:54
Avoid the Breach, Save the Weekend: Lessons Learned with CrowdStrike Services
Threat Hunting & Incident Response
Avoid the Breach, Save the Weekend: Lessons Learned with CrowdStrike Services
Tim Parisi
CrowdStrike
19:25
Elevate Your Game: Creating Tabletop Exercises that Actually Improve Your Team
Threat Hunting & Incident Response
Elevate Your Game: Creating Tabletop Exercises that Actually Improve Your Team
Multiple Speakers
CrowdStrike
27:44
{Will be replaced by the modal content}