[HEADS UP] Ransomware Gangs are Creating Ransomware Cartels



Ransomware Gang Creates Ransomware CartelsAnalysis by threat intelligence group Analyst1 recently uncovered that the bad guys are responsible for forming a ransomware cartel.

The analysis explains how a ransomware cartel works, in which several cybercriminal gangs band together on ransom operations. These gangs share resources, tactics, and profits made. This cartel is made for two big reasons - more reach and more revenue. 

Below is a breakdown of how this cartel has formed: 

Screen Shot 2021-04-28 at 8.30.26 AM

Source: Analyst1

Analyst1 said in a statement, "The first tie we found provided evidence that the groups are working together and sharing resources to extort victims. Several gangs compromised and stole victim data, which they passed on to Twisted Spider. Twisted Spider then posted the victim’s data and attempted to negotiate a ransom on their data leak site. This type of collaboration and sharing would not occur unless all three criminal elements had a trusted relationship with one another". 

One of the key findings that is worth mentioning based on the analysis is the use of Ransomware-as-a-Service, which hires cybercriminals to execute the attack for you at a discounted price. Cartels are also continuing to increase their ransom demands, automating their attacks, and reinvesting profits made from successful attacks to enhance their tactics. Unfortunately, it is only getting more and more easier for these ransomware gangs to infiltrate your organization. 

It is more important now than ever to ensure your team is implementing layered solutions for the best possible protection. New-school security awareness training is the most effective step to take, because it's most helpful for your users to know what to look out for on any possible infection. 

Read the full analysis from Analyst1 here. CISO Mag has the full story


RanSim

Free downloadable software tool

Threat actors are constantly coming out with new strains to evade detection. Is your network effective in blocking all of them when employees fall for social engineering attacks?

RanSim gives you a quick look at the effectiveness of your existing network protection. RanSim will test 24 ransomware infection scenarios and 1 cryptomining infection scenario and show you if a workstation is vulnerable.

RansIm-Monitor3Here's how it works:

  • 100% harmless simulation of real ransomware and cryptomining infections
  • Does not use any of your own files
  • Tests 25 types of infection scenarios
  • Just download the installer and run it
  • Results in a few minutes!

Get RanSim!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

https://www.knowbe4.com/ransim

Topics: Ransomware



Subscribe to Our Blog


Comprehensive Anti-Phishing Guide




Get the latest about social engineering

Subscribe to CyberheistNews