The gz attachment of the email contains an exe file: the malware.
RansomHouse is a new group just appeared on darkweb. Bleeping Computer cybersecurity experts: Threat Actors, instead using ransomware, seems focused on breaching networks through alleged vulnerabilities to steal data
RansomHouse is a new cybercrime group just appeared on darkweb, where threat actors published evidence of stolen files and leak data of victims that refuse to pay the ransom. It has been denounced by Bleeping Computer cybersecurity experts. The gang, instead using ransomware, seems focused on breaching networks through alleged vulnerabilities to steal a target’s data. Moreover, it seems that the group has accelerated recently its operations. RansomHouse is believed to have launched in December 2021 with its first victim allegedly the Saskatchewan Liquor and Gaming Authority (SLGA), now listed on the extortion site. But, since launching the site this month, the threat actors added three other victims, with the most recent being a German airline support service provider, attacked last week.