- December 17, 2020
- Duration: 35 min
They say you can't teach an old dog new tricks, but this is certainly not the case with the notorious Maze gang. After disbanding in early November 2020, many of the gang's affiliates moved to new ransomware family called Egregor and promptly resumed their infamous exfiltration tactics.
What makes Egregor more dangerous is that it has also become the ransomware of choice for Qakbot operators, who are well known for targeting large enterprise networks and holding data for record high ransoms.
Learn more about the new ransomware group in Group-IB's white paper: Egregor ransomware: The legacy of Maze lives on (https://www.group-ib.com/whitepapers/egregor-ransomware.html?utm_source=group-ib&utm_medium=webinar&utm_content=eng)
In this webinar we will cover:
- The latest tactics, techniques, and procedures of Egregor
- Details of recent Qakbot campaigns
- The similarities between Egregor, and Maze and Sekhmet
Senior DFIR Analyst
Group-IB is one of the leading providers of solutions aimed at detection and prevention of cyberattacks, online fraud, and IP protection. Group-IB Threat Intelligence & Attribution system was named one of the best in class by Gartner, Forrester, and IDC.
Group-IB’s technological leadership is built on the company’s 17 years of experience in cybercrime investigations worldwide and 65,000 hours of incident response accumulated in our leading forensic laboratory and 24/7 CERT-GIB.
Group-IB is a partner of INTERPOL, Europol, and a cybersecurity solutions provider, recommended by SWIFT and OSCE. Group-IB is a member of the World Economic Forum.Learn more