The threat actors behind the Hive Ransomware as a Service (RaaS) scheme have launched attacks against over 1,300 businesses worldwide, making $100 million in fraudulent payments to gangs as of November 2022. brought

โ€œHive ransomware targets a wide range of businesses and critical infrastructure sectors, including government facilities, telecommunications, critical manufacturing, information technology, especially healthcare and public health (HPH),โ€ US Cybersecurity and Intelligence institution Said in alert.

Active since June 2021, Hive’s RaaS operations include developers who create and manage malware and often purchase initial access from Initial Access Brokers (IABs) to carry out attacks on target networks. There is a mixture of affiliated companies that are responsible for

In most cases, they gain a foothold by exploiting the Microsoft Exchange Server ProxyShell vulnerability, followed by steps to terminate processes related to antivirus engines and data backups, and to delete Windows event logs.

High brandsomeware

Threat actors who recently upgraded their malware to Rust as an evasion evasion method have also been known to remove virus definitions before encryption.

โ€œHive attackers are known to use Hive ransomware or another ransomware variant to re-infect the networks of victim organizations that have restored their networks without paying a ransom,โ€ said US Cyber Security and Infrastructure Security Agency (CISA) says:

According to data shared by cybersecurity firm Malwarebytes, Hive compromised about seven victims in August 2022, 14 in September, and two other victims in October, making the group 26 victims. This indicates a decrease in activity since July, when it targeted victims of

cropped-BTA_Logo-B-1-scaled-1
YOUR FUTURE STARTS HERE.

BLUE TRAINING ACADEMY

Register now for our membership to gain access to our elite training program and fast forward your career today!

Newsletter

Subscribe my Newsletter for new blog posts, tips & new photos. Let's stay updated!

cropped-BTA_Logo-B-1-scaled-1
Security Blog

Blue Training Academy

Blue Training Academy was developed in 2018 as a educational and training facility for continuing education and certification courses. Blue Training Academy is an educational institution that allows for all sectors of the public and Criminal Justice field to gain ongoing training and education.

Copyright ยฉ๏ธ All rights reserved. | Blue Training Academy Blog