There is a lot of ransomware activity that been happening lately around the world such as follows:

  • REvil Ransomware
  • Sodinokibi Ransomware
  • Nemty Ransomware
  • Nephilim Ransomware
  • NetWalker Ransomware
  • DoppelPaymer Ransomware
  • Ryuk Ransomware

According to Coveware Q3 2020 ransomware report, there is a report that the attacker that owner of the ransomware didn’t keep their promise to decrypt the file which affected.

Below are the ransomware group that been faked their process:

  • Sodinokibi: Victims that paid were re-extorted weeks later with threats to post the same data set.
  • Netwalker: Data posted of companies that had paid for it not to be leaked
  • Mespinoza: Data posted of companies that had paid for it not to be leaked
  • Conti: Fake files are shown as proof of deletion

Source: Coveware Q3 2020 ransomware report

Ransomware attack vectors: RDP compromise, email phishing, software vulnerability, and others.

Source: Coveware Q3 2020 ransomware report

By Wan Ariff

He brings with him working experience in Information Security filed which specializing in Penetration Testing and Digital Forensic. His passion is more to IT Security

Leave a Reply

Your email address will not be published. Required fields are marked *