The “FIN12” threat group has been attracting attention for deploying ransomware in a quarter of the time typically needed, making it one of the fastest ransomware groups active today. Unlike other groups, FIN12 has not fully embraced the double-extortion technique, relying mainly on encryption. This approach enables the group to focus on improving attack efficiency, and to avoid problems with managing data-leak websites. FIN12 has primarily targeted the healthcare sector; the elevated risk posed by blocking access to healthcare systems likely explains the group’s success in receiving ransom payments. Such attacks have allegedly resulted in deaths. Regardless of the consequences, FIN12 is expected to wage more attacks, and probably become more efficient and destructive.
Other content in this Stream
The fallout of the recent Optus breach got me thinking about a common occurrence: seller’s remorse… Most of us have ...
Digital Shadows CISO Rick Holland alongside Michael Farnum CTO at Set Solutions and Greg Porterfield, Senior Security Consultant at Set Solutions give you the latest in threat intelligence.
If you have ever watched a movie or television show that depicted hacking, you have probably heard the phrase, “I’m ...
Ransomware in 2023 is almost certainly going to continue to become more organized, with newer groups entering the scene. Stay-up-to-date.
Digital Shadows are no strangers to witnessing exit scams. Read more about the latest tactics being used in carding forums to defraud users.
Cybercriminals are a hardy and adaptable breed. Our Photon Research Team keeps an eye on the latest activities as we enter the final quarter of 2022 in our latest blog.
Digital Shadows consistently monitors ransomware groups and cybercriminal forums, tracking their victims behavior, and related chatter. Read more.
Blimey, August already? This year has absolutely flown by and shows no signs of slowing down. This month has been ...
In this month's Vulnerability Intelligence Roundup, discover how Digital Shadow's Vulnerability Intelligence can help save time when analyzing these types of vulnerabilities.
ShadowTalk host Nicole alongside CISO Rick Holland bring you the latest in threat intelligence.
The Photon Research Team provides insights into Chinese hacktivism’s responses to the growing tensions between the People’s Republic of China (PRC) and Taiwan.
The cyber risk facing the manufacturing sector is likely greater at this point than ever before. Read our latest blog for how the industry is being impacted and next steps.
