Article 5MP3K Haron and BlackMatter are the latest groups to crash the ransomware party

Haron and BlackMatter are the latest groups to crash the ransomware party

by
Dan Goodin
from Ars Technica - All content on (#5MP3K)
ransomware-800x600.jpeg

Enlarge (credit: Getty Images)

July has so far ushered in at least two new ransomware groups. Or maybe they're old ones undergoing a rebranding. Researchers are in the process of running down several different theories.

Both groups say they are aiming for big-game targets, meaning corporations or other large businesses with the pockets to pay ransoms in the millions of dollars. The additions come as recent ransomware intrusions of oil pipeline operator Colonial Pipeline, meat packer JBS SA, and managed network provider Kaseya have caused major disruptions and created pressure in Washington to curb the threats.

Haron: like Avaddon. Or maybe not

The first group is calling itself Haron. A sample of the Haron malware was first submitted to VirusTotal on July 19. Three days later, South Korean security firm S2W Lab discussed the group in a post.

Read 10 remaining paragraphs | Comments

index?i=pxHHQpX3TxE:8F314CZri6c:V_sGLiPB index?i=pxHHQpX3TxE:8F314CZri6c:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments