Video On Demand
A Dharma Initiative: How OverWatch Threat Hunting Uncovered a Widespread Targeted Ransomware Affiliate Network
Karl Scheuerman
Aaron Pickett
  • Multiple Speakers
  • Karl Scheuerman
  • Aaron Pickett
Runtime: 22:40
Since 2019, we’ve seen a dramatic increase in targeted ransomware attacks. One collection of criminals conducting these intrusions have used shared tactics to deploy Dharma ransomware. Dharma is typically deployed using a Ransomware-as-a-Service franchise model. OverWatch threat hunting has uncovered ongoing attempts by Dharma ransomware affiliates to attack a diverse range of organizations worldwide throughout 2019 and into 2020. This presentation will provide details on our findings, featuring threat hunting techniques that revealed the string of attacks. By sharing our insights, the security community will be better prepared to tackle the targeted ransomware intrusions currently wreaking havoc across the globe.

Related Videos

Threat Hunting & Incident Response Drinking from the Tap: Network Security Monitoring
Multiple Speakers CrowdStrike 23:54
Threat Hunting & Incident Response Avoid the Breach, Save the Weekend: Lessons Learned with CrowdStrike Services
Tim Parisi CrowdStrike 19:25
Threat Hunting & Incident Response Elevate Your Game: Creating Tabletop Exercises that Actually Improve Your Team
Multiple Speakers CrowdStrike 27:44