❕New global ransomware threat uncovered
ShadowSyndicate has been uncovered as a powerful Ransomware-as-a-Service (RaaS) affiliate through a joint investigation by Group-IB, Bridewell, and independent researcher Michael Koczwara. This research was conducted as part of Group-IB's new Cybercrime Fighters Club program, an innovative initiative that fosters collaborative knowledge exchange and joint cybersecurity research.
Key findings:
🔸 Active since July 2022, ShadowSyndicate has left its mark across 13 countries with SSH fingerprints on 85 servers.
🔸 ShadowSyndicate is strongly believed to have leveraged three ransomware families — Quantum, Nokoyawa, ALPHV, and researchers have identified potential links to four more.
🔸 Strong suspicions of employing IcedID and Matanbuchus malware for system infiltrations.
🔸 ShadowSyndicate frequently utilized off-the-shelf tools like Cobalt Strike and Sliver in their attacks.
👉 Learn more here
#ShadowSyndicate #Ransomware #CybercrimeFightersClub #NewReport
ShadowSyndicate has been uncovered as a powerful Ransomware-as-a-Service (RaaS) affiliate through a joint investigation by Group-IB, Bridewell, and independent researcher Michael Koczwara. This research was conducted as part of Group-IB's new Cybercrime Fighters Club program, an innovative initiative that fosters collaborative knowledge exchange and joint cybersecurity research.
Key findings:
🔸 Active since July 2022, ShadowSyndicate has left its mark across 13 countries with SSH fingerprints on 85 servers.
🔸 ShadowSyndicate is strongly believed to have leveraged three ransomware families — Quantum, Nokoyawa, ALPHV, and researchers have identified potential links to four more.
🔸 Strong suspicions of employing IcedID and Matanbuchus malware for system infiltrations.
🔸 ShadowSyndicate frequently utilized off-the-shelf tools like Cobalt Strike and Sliver in their attacks.
👉 Learn more here
#ShadowSyndicate #Ransomware #CybercrimeFightersClub #NewReport
👍3🔥1