top of page
Search
Writer's pictureStormsec

RedAlert Ransomware

RedAlert is a new ransomware firstly discovered in July 2022 targeting ESXi server. It claims to have already infected several companies and organisations, and it uses the “double-extortion” tactic where the threat actor publishes online victim’s stolen data to be available for anyone to download.



MALWARE FAMILY: RedAlert


ATT&CK IDS: T1005 - Data from Local System, T1027 - Obfuscated Files or Information, T1083 - File and Directory Discovery, T1486 - Data Encrypted for Impact, T1490 - Inhibit System Recovery, T1583 - Acquire Infrastructure, T1587 - Develop Capabilities, T1592 - Gather Victim Host Information


Read More on:



9 views

Comments


Commenting has been turned off.
bottom of page