The RIG exploit kit has been spotted distributing the new ERIS Ransomware as its payload. Using the RIG exploit kit, vulnerable victims will find that the ransomware is installed on their computer without their knowledge simply by visiting a web site.
The ERIS ransomware was
originally spotted in May 2019 by Michael Gillespie when it was submitted to his ID Ransomware site, but a sample was not available at the time. Over the weekend, exploit kit researcher
nao_sec spotted it being distributed through a malvertising campaign using the RIG exploit kit.