Christiaan Beek
@ChristiaanBeek
Followers
10K
Following
6K
Media
1K
Statuses
13K
Saved by His Grace • sr dir Threat Analytics @Rapid7 - opinions are my own• Speaker•Former @Foundstone @Intel @Kon_Marine https://t.co/2MSYGTBKuq
In a data galaxy far far away
Joined March 2009
RT @stephenfewer: We now have a (draft) @metasploit exploit module in the pull queue for the recent Microsoft SharePoint Server unauthentic….
0
148
0
In the first half of 2025, Rapid7 Labs tracked 96 unique ransomware groups — a 41% increase over the same period in 2024. This isn’t just a number; it’s a wake-up call ⏰:
rapid7.com
Q2 2025 Ransomware Trends Analysis: Boom and Bust
0
3
4
RT @rapid7: 🚨 Scattered Spider is a financially motivated cybercriminal group notorious for targeting large enterprises – often by exploiti….
0
7
0
My talk “Why is #Ransomware Still a Thing in 2025?” has been accepted for #RSAC this year! Looking forward to examining the key challenges and share some interesting observations.
1
1
9
The 2024 #Ransomware landscape @rapid7 :
rapid7.com
The 2024 Ransomware Landscape: Looking back on another painful year | Rapid7 Blog
1
1
2
Dear followers, I will start to switch more to Bsky for posts:
0
1
1
RT @catc0n: The #malware side of the Rapid7 house published an analysis of one of the payloads our MDR folks have seen dropped in the #Cleo….
rapid7.com
Modular Java Backdoor Dropped in Cleo Exploitation Campaign | Rapid7 Blog
0
11
0
An experimental #Yara rule for Memory detection of the Modular RAT can be downloaded here:
github.com
Repo for yara-rules. Contribute to cbeek-r7/Yara development by creating an account on GitHub.
0
2
6
📷.The Java classes provide a modular multi-stage system (Java-RAT) designed to communicate with a C2, has file-transfer and management functionality, can execute commands and applies packet level encryption/decryption.
1
2
7
While we (@rapid7 ) researched the exploitation of the Cleo File transfer software CVE-2024-50623: I also took a stab on analyzing the Java classes that appeared in the final payload, a zip with 9 files aka Java classes in it. 🧵.
2
21
76
Phobos #Ransomware Administrator Extradited from South Korea to Face Cybercrime Charges.
justice.gov
The Justice Department unsealed criminal charges today against Evgenii Ptitsyn, 42, a Russian national, for allegedly administering the sale, distribution, and operation of Phobos ransomware. Ptits...
0
0
0
RT @catc0n: 🐚🐐 Full Rapid7 analysis for #FortiManager CVE-2024-47575 — just a chill Wednesday for @stephenfewer.
0
6
0
Why Cybercriminals are not necessarily embracing #AI
hackernoon.com
The rapid advancement of AI has offered powerful tools for adversarial attacks. Would threat actors invest and use more advanced AI applications?
0
1
2
0
0
1
RT @catc0n: AttackerKB has a technical assessment of the CUPS exploit chain, along with additional observations and IOCs c/o @stephenfewer….
attackerkb.com
On September 26, 2024, technical details of a four-vulnerability exploit chain affecting the Common UNIX Printing System (CUPS) were disclosed. The four vulner…
0
13
0
Rapid7 Labs’ #ransomware radar report 👇.
📈 Just dropped: the Ransomware Radar report. A fresh perspective on the global ransomware threat—and we mean fresh. All data was compiled from analyzing attacker activity and techniques over 18 months, ending June 30, 2024. 🔎 Download the report here:
0
0
2
RT @rapid7: 📈 Just dropped: the Ransomware Radar report. A fresh perspective on the global ransomware threat—and we mean fresh. All data w….
0
2
0