A zip attachment contains a img with an exe: the malware. The other, a pdf downloading a zip with an exe: the same malware. The data is exfiltrated via SMTP.
Cybercrime, ransomware gangs refine their tactics via chirurgical attacks
Ransomware gangs refine their tactics via chirurgical attacks. Coveware cybersecurity experts: The shift is due to the increasing pressing by the law enforcements. However, data exfiltration stll remains one of the RaaS most used tactic
Cybercrime ransomware gangs are refining their tactics with chirurgical attacks, due to the increasing pressing by the law enforcements. It has been revealed by Coveware cybersecurity experts. The proportion of companies attacked in the 1,000 to 10,000 employee count size increased from 8% in Q3 to 14% in Q4. The average ransom payment in just this employee bucket was well north of one million dollars, which dragged the Q4 average and median amounts higher. This tactic is supported by the subtle but noticeable shift in the size of victims and the effort by RaaS groups to avoid attention from Law Enforcement. However, data exfiltration remains a popular tactic among the majority of RaaS groups and affiliates. RaaS affiliates expect exfiltrated data to act as further motivation for victims to pay a ransom.