Ransomware in targeted attacks

Ransomware’s popularity has attracted the attention of cybercriminal gangs; they use these malicious programs in targeted attacks on large organizations in order to steal money. In late 2016, we detected an increase in the number of attacks, the main goal of which was to launch an encryptor on an organization’s network nodes and servers.




  • Subscribe

  • Reports

    Focus on DroxiDat/SystemBC

    An unknown actor targeted an electric utility in southern Africa with Cobalt Strike beacons and DroxiDat, a new variant of the SystemBC payload. We speculate that this incident was in the initial stages of a ransomware attack.

    APT trends report Q2 2023

    This is our latest summary of the significant events and findings, focusing on activities that we observed during Q2 2023.

    Meet the GoldenJackal APT group. Don’t expect any howls

    GoldenJackal is an APT group, active since 2019, that usually targets government and diplomatic entities in the Middle East and South Asia. The main feature of this group is a specific toolset of .NET malware, JackalControl, JackalWorm, JackalSteal, JackalPerInfo and JackalScreenWatcher.

    Subscribe to our weekly e-mails

    The hottest research right in your inbox