A cyber-crime group is at the heart of many non-standard ransomware infections, which appear to be carried out via a re-tooled version of the Bucbi ransomware that hasn't been seen in usage at such a massive scale since 2014, the year it was discovered.
Security researchers from Palo Alto Networks say these ransomware infections are different because they do not rely on social engineering tactics to trick victims into installing the ransomware, but that the group's members are doing it themselves, after hacking into vulnerable enterprise networks.
These attacks have a direct connection to a series of incidents on which Fox-IT researchers reported last week when they said they've seen cyber-crime groups use brute-force attacks against corporate networks running Internet-available RDP (Remote Desktop Protocol) servers. Palo Alto is now reporting on who's behind these attacks, why and how they're doing it.
[...]
Full Article: Bucbi Ransomware Makes a Comeback After Two Years
Security researchers from Palo Alto Networks say these ransomware infections are different because they do not rely on social engineering tactics to trick victims into installing the ransomware, but that the group's members are doing it themselves, after hacking into vulnerable enterprise networks.
These attacks have a direct connection to a series of incidents on which Fox-IT researchers reported last week when they said they've seen cyber-crime groups use brute-force attacks against corporate networks running Internet-available RDP (Remote Desktop Protocol) servers. Palo Alto is now reporting on who's behind these attacks, why and how they're doing it.
[...]
Full Article: Bucbi Ransomware Makes a Comeback After Two Years
