@0x6rss Excellent analysis! One thing though: The second largest slice in the victim geo chart of 29% is doing a lot of heavy lifting to be classified only as "Others". Would love to see that broken down further, there's probably some interesting regional patterns hiding in there.
@anton_chuvakin I think Im starting to understand ur questioning and I if my understading is correct it is a valid questioning but I'm failing to see the point u are trying to achieve with this questioning. I dont wanna believe this is basically you saying "stop doing crappy research; do better"
@socradar@CyberSleuth1@BleepinComputer@TheFinalHop@BroadcomSW Correction: First victim was published on Aug 4th
There are posts dated as Aug 4, 22, 24, 29 and Sept 4 and 12.
#3AM#ThreeAM victims so far are mostly from USA, only one of them being from Malaysia.
Targeted industries includes:
Construction,
Food,
Healthcare
and Marketing.
🔍The affiliates attempted to use #LockBit in a #ransomwareattack but were blocked, prompting them to use a new strain of #ransomware called #3AM instead. This could start a new trend in ransomware attacks.
Read more👇
https://t.co/5UWagvOOu4
@lordx64 is NATO some sort of role model now? Dont think so. This discussion is deeper than that. Yeah, the tool should be more accessible, but 1. They are a business and 2. imho this suggested accessibility criteria doesn't make much sense.