skip to Main Content

Cybercrime, Egregor operators send the ransom note by printers

The Egregor cybercrime operators use a new technique to increase pressure on ransomware victims: they print out ransom notes to all available printers. Cybersecurity experts believe the malware is the evolution of Maze

The Egregor cybercrime operators use a new technique to increase pressure on ransomware victims: they send the ransom note on all the the printers of the affected networks. According Bleeping Computer, it’s believed that the threat actors exploit a script at the end of an attack to print out ransom notes to all available printers. Cybersecurity experts believe that Egregor is the evolution of Maze, closed recently by his owners. It is also similar to its predecessor, sharing the same ransom notes, payment systems, and much of the source code. There are also those who even believe that malware is the last evolutionary step of Sekhmet, then passed to Maze.

Back To Top