![S-RM Insider artwork](https://is4-ssl.mzstatic.com/image/thumb/Podcasts124/v4/aa/7d/6a/aa7d6ae9-79b8-da3e-dc88-dafb8a919cc0/mza_13985686418751508097.jpg/100x100bb.jpg)
Cyber Intelligence Briefing | Phone hacks and ransomware attacks: A Lorenz case study | S-RM
S-RM Insider
English - March 16, 2023 09:48 - 16 minutes - 22.4 MBManagement Business compliance due diligence deal advisory disputes & investigations crisis response resilience advisory security consulting cyber security cyber advisory cyber testing cyber response Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Previous Episode: ESG Watch | March 2023
Next Episode: ESG Watch | April 2023
Our Cyber Incident Response team recently observed the threat actor group Lorenz using a 5-month-old web shell (a malicious script that compromises the web server) as a way into a victim’s network and foothold for a ransomware attack. Here, they discuss how the vulnerability was discovered, how the group covered its tracks and if this incident was a case of ‘initial access brokerage’. Read more about the case: https://insights.s-rminform.com/lorenz-cyber-intelligence-briefing-special