\n<\/p>\n
\n Trend Micro report takes a deep dive into one of the most successful threat groups in modern <\/p>\n
HONG KONG SAR –\u00a0Media
\u00a0<\/p>\n
The approach of modern ransomware families makes
\u00a0<\/i><\/b><\/p>\n
To read the report “Modern Ransomware’s
\u00a0<\/p>\n
“Modern ransomware attacks are highly targeted, adaptable
\u00a0<\/p>\n
Of the 16 ransomware groups studied from March 2020 to
\u00a0<\/p>\n
However, with its ruthless focus on organizations posting
\u00a0<\/p>\n
As the report reveals, a Nefilim attack typically
\nOutReach<\/a>\u00a0– 9 June 2021 –\u00a0<\/b> (;),
\na global
\ncybersecurity leader, today released a case study of the Nefilim
\nransomware group, providing insight into the inner-workings of modern
\nransomware attacks. The report gives valuable insight into how ransomware
\ngroups have evolved, operate under the radar and how advanced threat detection
\nand response platforms can help stop them.<\/p>\n
\n
<\/p>\n
\n
<\/p>\n
\ndetection and response significantly more difficult for already stretched SOC
\nand IT security teams. This matters not only to the bottom line and corporate
\nreputation, but also the wellbeing of SOC teams themselves. <\/p>\n
\n
<\/p>\n
\n
<\/p>\n
\nDouble Extortion Tactics and How to Protect Enterprises Against Them”: <\/i><\/b>https:\/\/www.trendmicro.com\/vinfo\/hk\/security\/news\/cybercrime-and-digital-threats\/modern-ransomwares-double-extortion-tactics-and-how-to-protect-enterprises-against-them<\/a>.
\n<\/i><\/b>
\n
<\/p>\n
\n
<\/p>\n
\nand stealthy \u2013 using proven approaches perfected by APT groups in the past. By
\nstealing data and locking key systems, groups like Nefilim look to extort
\nhighly profitable global organizations,” said Bob McArdle, director of
\ncybercrime research for Trend Micro. “Our latest report is a must-read for
\nanyone in the industry who wants to understand this fast-growing underground
\neconomy inside-out, and how solutions like Trend Micro Vision One can help them
\nhit back.” <\/p>\n
\n
<\/p>\n
\n
<\/p>\n
\nJanuary 2021, Conti, Doppelpaymer, Egregor and REvil led the way in terms of
\nnumber of victims exposed\u2014and Cl0p had the most stolen data hosted online at
\n5TB. <\/p>\n
\n
<\/p>\n
\n
<\/p>\n
\nmore than $1 billion in revenue, Nefilim extorted the highest median revenue. <\/p>\n
\n
<\/p>\n
\n
<\/p>\n
\ninvolves the following stages:<\/p>\n\n
\non exposed RDP services or other externally facing HTTP services.<\/li>\n
\nfor lateral movement to find valuable systems for data theft and encryption.<\/li>\n
\nStrike and protocols that can pass through firewalls, like HTTP, HTTPS and DNS.<\/li>\n
\nC&C servers.<\/li>\n
\nTOR-protected websites later to extort victim. Nefilim published around 2TB of
\ndata last year.<\/li>\n
\nenough data has been exfiltrated.<\/li>\n<\/ul>\n
\n
<\/p>\n