December 7, 2022Rabbi LakshmananCyber ​​Crime / Ransomware

The Vice Society cybercrime group disproportionately targets educational institutions, with 33 victims in 2022, surpassing other ransomware families such as LockBit, BlackCat, BianLian, and Hive.

Other prominent targeted industries include healthcare, government, manufacturing, retail and legal services. Analysis of leak site data By Palo Alto Networks Unit 42.

A cybersecurity firm calls Vice Society one of the “most influential ransomware gangs of 2022.”

cyber security

Of the 100 organizations affected in total, 35 cases were reported from the United States, followed by 18 in the United Kingdom, 7 in Spain, 6 each in Brazil and France, 4 each in Germany and Italy, and 3 cases in Australia. has been reported.

Vice Society, which has been active since May 2021, does not use its own ransomware variants and relies on existing ransomware binaries such as HelloKitty and Zeppelin sold on underground forums. , stands out from other ransomware crews.

Vice Association Ransomware

Microsoft, which tracks this activity under the name DEV-0832, says the group in some cases evaded the deployment of ransomware and used extorted stolen data to carry out extortion.

Vice Association Ransomware

the operator is Observed In addition to exploiting known security flaws to escalate privileges, it leverages internet-connected applications to gain initial network access via compromised credentials.

Unit 42’s incident response efforts show that the group stayed in the victim’s environment for six days and the initial ransom amount could exceed $1 million.

“School districts with limited cybersecurity capabilities and limited resources are often the most vulnerable to attackers,” said JR Gumalin, a researcher at Unit 42.

“The vice society and its consistent targeting of the education industry, especially around September, is a warning that this group is shaping a campaign to take advantage of the US school year.”

Did you find this article interesting?Please follow us twitter When LinkedIn To read more exclusive content that we post.



Register now for our membership to gain access to our elite training program and fast forward your career today!


Subscribe my Newsletter for new blog posts, tips & new photos. Let's stay updated!

Security Blog

Blue Training Academy

Blue Training Academy was developed in 2018 as a educational and training facility for continuing education and certification courses. Blue Training Academy is an educational institution that allows for all sectors of the public and Criminal Justice field to gain ongoing training and education.

Copyright ©️ All rights reserved. | Blue Training Academy Blog