×

Register to Access Intelligence Summary

First Name
Last Name
Job Title
Company
Country
State
Thank you!
Error - something went wrong!
   

Weekly Intelligence Summary 05 March

March 5, 2021

While conducting incident response in early 2021, the French National Cybersecurity Agency (ANSSI) identified a new “Ryuk” ransomware variant that has the capability to self-propagate across victim networks. The variant was specifically observed targeting Windows systems in ransomware campaigns at the beginning of the year (2021). This Ryuk variant can wake up powered-off systems and move through victim networks using scheduled tasks. This enables Ryuk to infect as many hosts as possible, further incentivizing a victim payout. If proven an effective tactic, other ransomware variants could develop similar “wormable” capabilities where those developers have the technical sophistication to do so.

Previous Report
Weekly Intelligence Summary 12 March
Weekly Intelligence Summary 12 March

A new round of software attacks has raised another red flag concerning supply-chain security and the preval...

Next Report
Weekly Intelligence Summary 26 February
Weekly Intelligence Summary 26 February

The People’s Republic of China-linked advanced persistent threat group “APT31” reportedly cloned and deploy...

×

Want these
Threat Intelligence reports sent straight to your inbox?

Subscribe below!

First Name
Last Name
Company
Country
State- optional
Job Title
Thank you!
Error - something went wrong!