This assignment analyzes the Olympic Destroyer malware attack on the 2018 Winter Olympics. It explores Sandworm’s tactics, including domain controller destruction, worm-like propagation, and deceptive attribution techniques. The article also examines the incident response effort by AhnLab and global threat intelligence teams to restore systems and contain the breach.
Category: Threat Intelligence
Shadow Brokers, NSA Exploit Leaks, & Network Security
This assignment explores foundational network operating system concepts and analyzes Darknet Diaries Episode 53 on the Shadow Brokers. It examines the leak of NSA hacking tools, including EternalBlue, and discusses the broader implications for government cybersecurity, offensive versus defensive security postures, and the global impact of exploit disclosure.
Darknet Diaries: NotPetya Attack
This article analyzes the NotPetya cyberattack as discussed in Darknet Diaries Episode 54. It examines the tools used—Mimikatz, EternalBlue, and worm-based ransomware—the strategic targeting of Ukraine, and the unintended global spread that disrupted multinational companies and critical infrastructure worldwide.