Article References
During the creation of this website, our group referenced most of the material from Sophos Investigation, along with other news articles.
Main References :
SOPHOS. (2018). SamSam: The (Almost) Six Million Dollar Ransomware. Retrieved from SOPHOS: https://www.sophos.com/en-us/medialibrary/PDFs/technical-papers/SamSam-The-Almost-Six-Million-Dollar-Ransomware.pdf
​
Donnellon McCarthy Enterprises. (11 September, 2018). IT Security: All You Need to Know About the Atlanta Ransomware Attack. Retrieved from Donnellon McCarthy Enterprises: https://www.dme.us.com/2018/09/11/it-security-all-you-need-to-know-about-the-atlanta-ransomware-attack/
​
Other Materials:
Unit 1
DOJ. (28 November, 2018). Two Iranian Men Indicted for Deploying Ransomware to Extort Hospitals, Municipalities, and Public Institutions, Causing Over $30 Million in Losses. Retrieved from THE UNITED STATES - DEPARTMENT OF JUSTICE: https://www.justice.gov/opa/pr/two-iranian-men-indicted-deploying-ransomware-extort-hospitals-municipalities-and-public
​
Gold, R. (26 February, 2019). SamSam But Different: MITRE ATT&CK And The SamSam Group Indictment. Retrieved from digital shadows: https://www.digitalshadows.com/blog-and-research/samsam-but-different-mitre-attck-and-the-samsam-group-indictment/
Unit 2:
Fisher, T. (11 September, 2020). PsExec: What It Is and How to Use It. Retrieved from LifeWire: https://www.lifewire.com/psexec-4587631
​
Green, A. (19 June, 2020). New SamSam Ransomware Exploiting Old JBoss Vulnerability. Retrieved from VARONIS: https://www.varonis.com/blog/new-samsam-ransomware-still-exploits-old-jboss-vulnerability/
​
PA. (n.d.). PAExec. Retrieved from Power Admin: https://www.poweradmin.com/paexec/
Petters, J. (24 August, 2020). What is Mimikatz: The Beginner’s Guide. Retrieved from VARONIS: https://www.varonis.com/blog/what-is-mimikatz/
​
Yfantis, V. (21 April, 2020). The RDP Client for Windows 10 and Alternatives. Retrieved from Parallels: https://www.parallels.com/blogs/ras/windows-10-latest-rdp-client/#:~:text=Remote%20Desktop%20Protocol%20(RDP)%20is,must%20deploy%20RDP%20server%20software
Unit 3:
USAO-Northern District of Georgia. (5 December, 2018). Atlanta U.S. Attorney Charges Iranian nationals for City Of Atlanta ransomware attack. Retrieved from USAO - Northern District of Georgia: https://www.justice.gov/usao-ndga/pr/atlanta-us-attorney-charges-iranian-nationals-city-atlanta-ransomware-attack
Unit 4:
Boyd, C. (16 July , 2021). SamSam ransomware: what you need to know. Retrieved from Malwarebytes LABS: https://blog.malwarebytes.com/cybercrime/2018/05/samsam-ransomware-need-know/
​
CISA. (3 December, 2018). SamSam Ransomware. Retrieved from Cybersecurity and Infrastructure Security Agency: https://us-cert.cisa.gov/ncas/alerts/AA18-337A
​
Crowe, J. (March, 2018). City of Atlanta Hit with SamSam Ransomware: 5 Key Things to Know. Retrieved from Barkly: https://web.archive.org/web/20180718205025/https://blog.barkly.com/atlanta-ransomware-attack-2018-samsam
​
FBI. (28 November, 2018). Ransomware Suspects Indicted. Retrieved from FEDERAL BUREAU OF INVESTIGATION : https://www.fbi.gov/news/stories/iranian-ransomware-suspects-indicted-112818
​
Freed, B. (29 July, 2019). State and local governments urged to beef up ransomware defense. Retrieved from STATESCOOP: https://statescoop.com/state-local-government-urged-ransomware-defense/
​
pace. (7 December, 2018). Important FBI/DHS Warning: Update On FBI and DHS Warning: SamSam Ransomware. Retrieved from PACE TECHNICAL: https://pacetechnical.com/2018/12/07/important-fbi-dhs-warning-update-on-fbi-and-dhs-warning-samsam-ransomware/
​
Reuters. (7 June, 2018). Atlanta officials reveal worsening effects of cyber attack. Retrieved from REUTERS: https://www.reuters.com/article/us-usa-cyber-atlanta-budget/atlanta-officials-reveal-worsening-effects-of-cyber-attack-idUSKCN1J231M?feedType=RSS&feedName=technologyNews
​
Deere, S. (2 August, 2018). CONFIDENTIAL REPORT: Atlanta’s cyber attack could cost taxpayers $17 million. Retrieved from The Atlanta Journal Constitution : https://www.ajc.com/news/confidential-report-atlanta-cyber-attack-could-hit-million/GAljmndAF3EQdVWlMcXS0K/
Unit 5:
Davis, H. L. (20 May, 2017). How ECMC got hacked by cyber extortionists – and how it's recovering. Retrieved from THE BUFFALO NEWS: https://buffalonews.com/business/local/how-ecmc-got-hacked-by-cyber-extortionists-and-how-its-recovering/article_bfdd8b2e-d3e3-5750-9329-2c20e8634a70.html
​
Gallagher, S. (1 April, 2016). Maryland hospital group hit by ransomware launched from within [Updated]. Retrieved from ars technica: https://arstechnica.com/information-technology/2016/03/maryland-hospital-group-hit-by-ransomware/